project glasswing2 articles
EU's Cyber Watchdog Gets Access to Anthropic's Scary Vulnerability-Finding AI
Anthropic has agreed to grant the EU's cybersecurity agency ENISA access to its powerful AI model, Mythos, through Project Glasswing — making ENISA the first European entity to join the initiative. Mythos has drawn significant concern due to its ability to autonomously discover and exploit software vulnerabilities at unprecedented speed and scale, raising fears about lowering the barrier for sophisticated cyberattacks. While the European Commission views the access as essential for assessing AI-related cyber risks, the terms are still being negotiated, and it remains unclear whether the US agency CISA has been granted similar access.
AI Bug-Hunting Is Breaking Patch Records Across the Industry
Microsoft's May 2026 Patch Tuesday addressed 118 security vulnerabilities, including 16 critical flaws, but notably contained no zero-day exploits — a rare occurrence in nearly two years. The surge in patching activity across major tech companies, including Apple, Google, Mozilla, and Oracle, is largely attributed to "Project Glasswing," an AI vulnerability-detection tool developed by Anthropic that has proven highly effective at identifying security flaws in code. The tool has dramatically increased the volume and pace of security patches industry-wide, with Mozilla fixing 271 vulnerabilities in Firefox 150 and Google patching 127 Chrome flaws in a single update.