Dernière minute
FREspagne-Portugal : Merino crucifie la Roja en fin de match, le Portugal éliminé de la Coupe du Monde 2026RUВ Запорожской области повреждены энергообъекты после атаки ВСУCRYPTO-ENUK Foreign Secretary Warns of AI Risks, Compares to Nuclear AgeARالأرجنتين تواجه مصر، ألمانيا تبحث عن كلوب، وتوخيل ينتقد التحكيمDEKanada kauft deutsche U-Boote – Merz sieht starkes Zeichen der ZusammenarbeitBRPerseguição policial termina em acidente entre moto e dois carros nos Jardins, em SPKR베들레헴에 첫 국가명 거리…한국 ODA 지원에 감사의 뜻BRHomem é contido em voo da Iberia entre Madri e Recife após confusãoBRJovem é preso com drogas na BR-393, em SapucaiaTRApple watchOS 27 ile Kadın Sağlığı ve Yapay Zeka Koçuna OdaklanıyorFREspagne-Portugal : Merino crucifie la Roja en fin de match, le Portugal éliminé de la Coupe du Monde 2026RUВ Запорожской области повреждены энергообъекты после атаки ВСУCRYPTO-ENUK Foreign Secretary Warns of AI Risks, Compares to Nuclear AgeARالأرجنتين تواجه مصر، ألمانيا تبحث عن كلوب، وتوخيل ينتقد التحكيمDEKanada kauft deutsche U-Boote – Merz sieht starkes Zeichen der ZusammenarbeitBRPerseguição policial termina em acidente entre moto e dois carros nos Jardins, em SPKR베들레헴에 첫 국가명 거리…한국 ODA 지원에 감사의 뜻BRHomem é contido em voo da Iberia entre Madri e Recife após confusãoBRJovem é preso com drogas na BR-393, em SapucaiaTRApple watchOS 27 ile Kadın Sağlığı ve Yapay Zeka Koçuna Odaklanıyor
Newsgather
BackAnthropic Investigating Claim of Unauthorized Access to Mythos AI Tool
Anthropic Investigating Claim of Unauthorized Access to Mythos AI Tool
En développement
BBC News22.04.2026Tech2 dk okuma

Anthropic Investigating Claim of Unauthorized Access to Mythos AI Tool

Security breach raises questions about AI companies' ability to control powerful models

L'essentiel

  • Anthropic is investigating a claim that unauthorized users accessed its Claude Mythos cyber-security model through a third-party vendor environment.
  • The model, deemed too powerful for public release, was accessed via a private forum according to Bloomberg.
  • The access was likely through misuse of existing credentials rather than a hack.

Résumé généré par IA

Pourquoi c'est important

Anthropic's Claude Mythos is a cyber-security tool that the company says is too powerful to release publicly. It has been released to select tech and financial companies to help them secure systems against AI-powered vulnerabilities. The UK has no frontier AI companies and relies on US firms for access to these tools.

Taille de police

Anthropic is investigating a claim that a small group of people gained access to its Claude Mythos model - the cyber-security tool which the AI firm says is too powerful to release to the public. "We're investigating a report claiming unauthorized access to Claude Mythos Preview through one of our third-party vendor environments," the company said in a statement. It was in response to a Bloomberg report that users in a private forum managed to access the model without the normal permissions. There is deep unease about Mythos' capabilities - though the UK's top cyber official has said advanced AI tools could be a "net positive" if the technology was secured from misuse. There is currently no suggestion that malicious actors have managed to get hold of the model, and Anthropic says it does not have evidence its systems are affected. But the report of access by unauthorised users raises questions about the ability of large AI companies to stop their advanced AI models from getting into the wrong hands. This was "most likely through misuse of access rather than a classic hack," according to Raluca Saceanu, chief executive of cyber-security company SmartTech. Anthropic has released the Mythos model to some tech and financial companies in order to help them secure their systems against its reported ability to exploit vulnerabilities. But that relies on those companies making sure their own access is tightly controlled. The person already had permission to view Anthropic's AI models through work they had done for a third-party contractor, according to Bloomberg. The outlet also reported the group has been using the model since it gained access - although not for hacking, because they do not want to be detected. "When powerful AI tools are accessed or used outside their intended controls, the risk is not just a security incident but the spread of capabilities that could be used for fraud, cyber abuse, or other malicious activity," Saceanu said. In a speech to a large cyber-security conference on Wednesday, the head of the UK's National Cyber Security Centre (NCSC) made a more positive case arguing AI tools can make things safer and more secure. Richard Horne urged the CyberUK delegates not to fear new AI attacks, but to make sure they are doing the basics of cyber-security right. "As we have seen in the media in recent days, frontier AI is rapidly enabling discovery and exploitation of existing vulnerabilities at scale, illustrating how quickly it will expose where fundamentals of cyber-security are still to be addressed," he said. Horne's warnings echo similar messages from recent years - for example the urgency for people to ensure they update the software on their systems and upgrade legacy IT. At the same event, Security Minister Dan Jarvis implored AI firms to work with the government on the "generational endeavour" to make sure AI is used to protect critical networks from attackers. All the most powerful and advanced AI models - known as frontier AI - are developed outside of the UK, with the top-tier companies based in the US or China. That means the UK relies on companies like Anthropic to give it access to Mythos and has no control over how it is built, trained or released. OpenAI also has a cyber-security model it says is very capable called GPT 5.4 Cyber. The speeches at CyberUK also pressed home the ongoing threat of nation state and hacktivist attacks, particularly from Russia and China. The NCSC warns that cyber is now "the home front" of defence in the UK with recent events such as the Iran attacks showing that cyber plays an increasingly important role in all modern conflicts. Additional reporting by Imran Rahman-Jones.

À surveiller

Perspective IA — des possibilités, pas des certitudes

  • Anthropic will implement stricter third-party vendor access controls

    Probable · En quelques semaines

  • UK government will increase calls for domestic AI development

    Probable · En quelques mois

Questions ouvertes

  • How many unauthorized users accessed the model?
  • What specific vulnerabilities were exposed?
  • Will this change how third-party access is managed?

Sujets liés

This article was originally published by BBC News.

Articles liés

Plus sur ce sujetanthropic