{"id":22307,"date":"2026-04-30T00:26:10","date_gmt":"2026-04-30T00:26:10","guid":{"rendered":"https:\/\/www.europesays.com\/ai\/22307\/"},"modified":"2026-04-30T00:26:10","modified_gmt":"2026-04-30T00:26:10","slug":"how-artificial-intelligence-is-changing-cybersecurity","status":"publish","type":"post","link":"https:\/\/www.europesays.com\/ai\/22307\/","title":{"rendered":"How artificial intelligence is changing cybersecurity"},"content":{"rendered":"<p>The prospect of super-hacker artificial intelligence systems, like Anthropic\u2019s Mythos, has sent many leaders in <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.nytimes.com\/2026\/04\/17\/business\/dealbook\/washington-anthropic-mythos.html\">government<\/a>, <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.cnbc.com\/2026\/04\/10\/powell-bessent-us-bank-ceos-anthropic-mythos-ai-cyber.html\">finance<\/a>, and the business world into a cybersecurity <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.nytimes.com\/2026\/04\/22\/technology\/anthropics-mythos-ai.html\">panic<\/a>. Mythos is Anthropic\u2019s latest and greatest AI model the company said is <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.bloomberg.com\/news\/features\/2026-04-16\/how-anthropic-discovered-mythos-ai-was-too-dangerous-for-release\">too dangerous to release<\/a> to the public because it\u2019s so good at uncovering security vulnerabilities. <\/p>\n<p>Anthropic has shared a preview version with a <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.anthropic.com\/glasswing\">group of large companies<\/a> in tech and finance to get a head start on patching the security holes that Mythos finds. OpenAI\u2019s <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.bloomberg.com\/news\/articles\/2026-04-14\/openai-releases-cyber-model-to-limited-group-in-race-with-mythos\">latest<\/a> cyber model is <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.axios.com\/2026\/04\/28\/openai-anthropic-congress-cyber-briefings\">raising similar concerns<\/a>. <\/p>\n<p>\u201cIt was inevitable,\u201d said Steven Weber, a retired University of California, Berkeley, professor who led the Center for Long Term Cybersecurity.<\/p>\n<p>He\u2019s long worried about AI empowering malicious hackers, because if there\u2019s one thing we know today\u2019s large language models are really good at, it\u2019s coding.<\/p>\n<p>\u201cSo the idea that the models were going to discover bugs in code, it doesn&#8217;t really surprise me,\u201d Weber said.<\/p>\n<p><a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/red.anthropic.com\/2026\/mythos-preview\/\">Anthropic<\/a> and <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/deploymentsafety.openai.com\/gpt-5-5\/hard-negative-protein-binding-prediction\">OpenAI<\/a> claim their new models are significantly more capable at detecting unknown bugs in the code that underlies everything from operating systems to web browsers. <\/p>\n<p>These so-called \u201czero day exploits,\u201d allow bad actors to access systems through back doors nobody knew were there. No patch exists to lock them.<\/p>\n<p>\u201cZero day exploits are the nuclear weapons of the cybersecurity world,\u201d said Weber.<\/p>\n<p>And like nuclear weapons, finding zero day vulnerabilities had largely been the domain of sophisticated state-level actors. But AI is changing that.<\/p>\n<p>Attacks that once took a team of specialized hackers months to research and days to execute can be done by one person in an afternoon said John Hendley, who leads offensive testing at the cybersecurity firm Coalfire.<\/p>\n<p>Using internal AI tools less capable than the top frontier models, he said they\u2019ve breached systems in less than ten minutes.<\/p>\n<p>\u201cAnd what we can do in a lab environment today, a professional cyber crime group will be able to do to a real bank or other piece of critical infrastructure within 18 months,\u201d he said.<\/p>\n<p>Already Anthropic confirmed it\u2019s investigating <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.bloomberg.com\/news\/articles\/2026-04-21\/anthropic-s-mythos-model-is-being-accessed-by-unauthorized-users\">unauthorized users<\/a> who gained access to the secret Mythos preview. And Hendley expects <a class=\"externallink\" title=\"\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.theregister.com\/2026\/04\/24\/ai_bugfinding_futures\/\">open-source<\/a> models, many built in China, will catch up in the near future.<\/p>\n<p>\u201cIf you&#8217;re a board member at a bank or a hospital system, you should be asking one question this quarter, and it&#8217;s, \u2018What do we need to do to detect and contain an attack that unfolds in an hour?\u2019\u201d said Hendley.<\/p>\n<p>Boards will be expecting answers from folks like Joshua Brown. He\u2019s been an information security executive at H&amp;R Block, Omnicom, and now Spektrum Labs. <\/p>\n<p>\u201cThe old joke is that they sleep like babies,\u201d he said of chief information security officers. \u201cThey wake up every two hours, crying.\u201d<\/p>\n<p>And now, it seems every two hours is not gonna cut it. Brown says the same AI tools the bad guys use will help organizations detect and patch vulnerabilities. <\/p>\n<p>\u201cSo you can find stuff faster,\u201d he said. \u201cNow the pressure shifts to the other side of the equation, which is, are businesses equipped to handle that remediation and containment activity faster? I think the obvious answer immediately is no.\u201d<\/p>\n<p>Most companies have <a class=\"externallink\" target=\"_blank\" rel=\"noopener noreferrer nofollow\" href=\"https:\/\/www.bain.com\/insights\/claude-mythos-and-ai-cybersecurity-wake-up-call\/\">chronically underinvested in cybersecurity<\/a> according to Frank Ford, a partner at the consulting firm Bain and Company.<\/p>\n<p>\u201cPeople have looked at cybersecurity as a form of insurance,\u201d he said. \u201cNo one likes necessarily paying insurance premiums. It&#8217;s offsetting the chance of something bad happening, which seems quite remote.\u201d<\/p>\n<p>Ford said companies spend on average less than 1% of revenues on cybersecurity, and many will need to double those resources.<\/p>\n<p>\u201cIt&#8217;s not a simple risk, like a fire,\u201d he said. \u201cYou put a fire alarm in place, you can be comfortable you&#8217;ve done the right things. Cyber is not like that. It needs constant change and focus.\u201d<\/p>\n<p>In the cat and mouse game of cybersecurity, AI is helping both sides do more. But the mouse only has to get lucky once.<\/p>\n<p>Related Topics<\/p>\n","protected":false},"excerpt":{"rendered":"The prospect of super-hacker artificial intelligence systems, like Anthropic\u2019s Mythos, has sent many leaders in government, finance, and&hellip;\n","protected":false},"author":2,"featured_media":22308,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[53,25,313,10346,4018],"class_list":{"0":"post-22307","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-anthropic","8":"tag-anthropic","9":"tag-artificial-intelligence","10":"tag-cybersecurity","11":"tag-data-security","12":"tag-hackers"},"_links":{"self":[{"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/posts\/22307","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/comments?post=22307"}],"version-history":[{"count":0,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/posts\/22307\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/media\/22308"}],"wp:attachment":[{"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/media?parent=22307"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/categories?post=22307"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.europesays.com\/ai\/wp-json\/wp\/v2\/tags?post=22307"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}