Project Glasswing partners discovered more than 10,000 vulnerabilities in its first month.
Tag: project
Global Security News
Anthropic Expands Mythos Access to 150 More Organizations
Anthropic widens Project Glasswing access to 150 more firms as patching becomes the bottleneck
AI, Cybersecurity, Global Security News, Government & Policy
Anthropic expands Project Glasswing to 150 organizations in more than 15 countries
Anthropic is expanding Project Glasswing, its cybersecurity initiative built around the Claude Mythos Preview model, by adding about 150 organizations following several weeks of work with its initial group of partners, security firms, open-source maintainers, and government agencies. Organizations joining the program must meet security requirements before gaining access, Anthropic noted. The expansion brings the…
AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management
Anthropic grants Project Glasswing access to 150 more companies, with a focus on critical infrastructure
Anthropic on Tuesday announced that it was adding 150 more companies to its Project Glasswing AI-based vulnerability hunting initiative, with a particular focus on critical infrastructure companies including those involved in “power, water, healthcare, communications and hardware.” Analysts and security vendors agreed that the move is a positive step, noting that the more companies involved…
AI, APAC, Cloud Security, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security
Anthropic expanding access to Project Glasswing
Anthropic is broadening access to its Project Glasswing program, adding approximately 150 organizations in 15 countries, the company announced Tuesday, as its restricted Claude Mythos Preview model has already surfaced more than 10,000 high- or critical-severity software vulnerabilities since the program launched in early April. The expansion follows an initial cohort of roughly 50 partners…
Europe, Global Security News
Anthropic to Open Mythos AI to EU’s ENISA
The European security agency’s entry to Project Glasswing is the result of “strong bilateral cooperation” between the European Commission and Anthropic.
AI, Apps, Global Security News
AI hiring monoculture is delivering racial bias at scale
A research project examining AI-driven recruitment hires across the US has revealed a systemic racial bias. Researchers from Stanford University found a startling pattern of racial disparities when looking at the interview offers resulting from 4 million job applications submitted to 156 employers. The situation is aggravated by the “monoculture” in AI hiring software: More…
AI, Global Security News
IBM and Red Hat are betting $5 billion that open source needs a security guard
IBM and Red Hat announced Project Lightwell, a $5 billion commitment backed by new frontier AI capabilities and a global force of more than 20,000 engineers to help enterprises secure open source software. Together, these investments establish a new model for enterprise use of open source software, from upstream development through production environments. Project Lightwell…
AI, APAC, Cybersecurity, Exploits, Global Security News, Government & Policy
Anthropic: Mythos finds more than 10,000 software flaws in first month
Anthropic said its month-old Project Glasswing initiative has uncovered more than 10,000 high- or critical-severity software vulnerabilities across systemically important code, a finding the company says has shifted the central problem in cybersecurity from discovering flaws to verifying and patching them. The findings, drawn from partner reports and independent evaluations, mark one of the first…
Exploits, Global Security News
Anthropic: Claude Mythos identified 10,000+ software flaws
Anthropic and its Project Glasswing partners have identified more than 10,000 high- or critical-severity vulnerabilities in critical software systems, the company announced in an update on the project’s progress. Mythos identifies thousands of high-severity vulnerabilities In April 2026, Anthropic introduced Claude Mythos Preview, a new large language model that can autonomously find zero-day vulnerabilities and…
china, Global Security News
What Readers Found When They Asked Their Chatbots About China
Plus, a Hollywood screenwriter says historical disputes sank a U.S.—China film project.
AI, APAC, Cybersecurity, Exploits, Global Security News, Risk Management
Project Glasswing has uncovered 10,000 vulnerabilities: Anthropic
Anthropic says it and upwards of 50 partners involved in Project Glasswing have uncovered an estimated 10,000 critical or high-severity vulnerabilities in their software offerings. The company launched the cybersecurity initiative, which is built around Claude Mythos Preview, in April, stating that its launch partners would use it as part of their defensive security work.…
AI, Apps, Global Security News, Risk Management
As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free
As AI coding assistants accelerate software development, one OWASP-backed open-source project is arguing that dependency security tooling still arrives too late to be truly useful. CVE Lite CLI, a JavaScript and TypeScript dependency vulnerability scanner focused on local lockfile analysis, is positioning itself around a simple idea. Developers should see dependency risks while they are…
AI, Apps, Cybersecurity, Data Breaches, Exploits, Funding, Global Security News, Network Security
Anthropic’s Project Glasswing: 10,000+ Vulnerabilities Found in One Month, and the Patching Problem Has Never Been More Obvious
Anthropic said its AI Project Glasswing found over 10,000 serious vulnerabilities in one month, exposing a growing patching gap. Anthropic announced on Friday that Project Glasswing, its defensive cybersecurity initiative built around Claude Mythos Preview, has uncovered more than 10,000 high- or critical-severity vulnerabilities in the month since the program went live. The number is…
AI, Cybersecurity, Global Security News
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities across some of the most “systemically” important software across the world since the cybersecurity initiative went live last month. Project Glasswing is an effort led by the artificial intelligence (AI) company, as part of which a small set…
Global Security News
Max-severity flaw in ChromaDB for AI apps allows server hijacking
A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. […]
AI, Global Security News
There’s a New Way to Create Google Docs With Your Voice. Watch Me Try It.
An exclusive look at Docs Live, Google’s new speech-powered AI project manager and writing partner.
AI, Global Security News
TeamPCP hackers advertise Mistral AI code repos for sale
The TeamPCP hacker group is threatening to leak source code from the Mistral AI project unless a buyer is found for the data. […]
AI, Apps, Compliance, Global Security News
SAP Sapphire 2026 Intros ‘Autonomous Enterprise’ Vision
SAP wants businesses to stop treating AI like a side project and start running entire operations around it. At its annual SAP Sapphire 2026 conference in Orlando, SAP unveiled what it calls the “Autonomous Enterprise,” a strategy built around AI agents, business automation, and enterprise data systems designed to work together across finance, HR, procurement,…
AI, Global Security News
May 2026 Patch Tuesday forecast: AI starts driving security industry changes
Project Glasswing. This is one of three major security industry changes I’ll cover today. The Anthropic Mythos vulnerability discovery model has already proven to be game changing in its ability to identify new vulnerabilities in software. Many of these vulnerabilities have existed for 10 to 15 years without human discovery. In a recent announcement from…
AI, Global Security News
SpaceX Tees Up Massive Spending Ahead of IPO
A chip-manufacturing complex, AI satellites, and space facilities add to a pricey project list at Elon Musk’s company.
AI, Compliance, Cybersecurity, Endpoint, Exploits, Global Security News, Risk Management
Mythos AI: What Security Leaders Should Do Next
The recent discussion around Anthropic’s Claude Mythos Preview and Project Glasswing has caught the attention of the cybersecurity industry for good reason. Mythos is not just another AI announcement. It is being positioned as a frontier model with advanced cybersecurity capability, particularly around finding and exploiting software vulnerabilities. Anthropic has stated that Project Glasswing is…
AI, Global Security News
Fedora Linux 44 ships with GNOME 50 and KDE Plasma 6.6
The Fedora Project released Fedora Linux 44, delivering updated desktop environments, revised installer behavior, and several lower-level system changes across its editions and spins. The release covers the project’s flagship editions, including Workstation, KDE Plasma Desktop, Cloud, Server, CoreOS, and IoT, alongside the Atomic Desktops lineup of Silverblue, Kinoite, Cosmic, Budgie, and Sway. Alternate spins…
AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
CrowdStrike Builds Project QuiltWorks for AI-era Bugs
CrowdStrike has launched Project QuiltWorks, a partner-led coalition aimed at helping enterprises respond faster to vulnerabilities uncovered by frontier AI models. The initiative brings together Accenture, EY, IBM Cybersecurity Services, Kroll, and OpenAI with CrowdStrike’s Falcon platform and partner network. The company said the goal is to help organizations identify, prioritize, and remediate AI-discovered vulnerabilities…
AI, Global Security News
Project Glasswing Proved AI Can Find the Bugs. Who’s Going to Fix Them?
Last week, Anthropic announced Project Glasswing, an AI model so effective at discovering software vulnerabilities that they took the extraordinary step of postponing its public release. Instead, the company has given access to Apple, Microsoft, Google, Amazon, and a coalition of others to find and patch bugs before adversaries can. Mythos Preview, the model that…
AI, Global Security News, privacy
Tails 7.6.2 patches vulnerability that could expose saved files
The Tails Project released Tails v7.6.2, an emergency release of the popular open source secure portable operating system. What is Tails? Tails, which is based on Debian GNU/Linux, is aimed at users who want to preserve their online privacy and anonymity. The OS is installed on a dedicated USB stick and when plugged into a…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
Anthropic’s Project Glasswing Signals Potential AI-Driven Shift in Cybersecurity
Anthropic’s Project Glasswing highlights how advanced AI models may rival top human experts in finding and exploiting software vulnerabilities. Early claims from the company suggest these models, like Claude Mythos Preview, can operate at large scale and find vulnerabilities faster. However, security leaders share mixed views on the claims. “Mythos appears to materially change the…
AI, Global Security News
Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor
Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve malicious executables for the popular CPU-Z and HWMonitor tools. […]
AI, Global Security News
Anthropic Launches Project Glasswing to Use AI to Find and Fix Critical Software Vulnerabilities
Anthropic launches Project Glasswing, using its Claude Mythos Preview AI to autonomously identify and fix undiscovered vulnerabilities in critical software
AI, Apps, Compliance, Exploits, Global Security News, Risk Management
Microsoft’s new Agent Governance Toolkit targets top OWASP risks for AI agents
Microsoft has quietly introduced the Agent Governance Toolkit, an open-source project designed to monitor and control AI agents during execution as enterprises try to move them into production workflows. The toolkit, which is a response to the Open Worldwide Application Security Project’s (OWASP) emerging focus on AI and LLM security risks, adds a runtime security…
AI, Apps, Compliance, Exploits, Global Security News, Risk Management
Microsoft’s new Agent Governance Toolkit targets top OWASP risks for AI agents
Microsoft has quietly introduced the Agent Governance Toolkit, an open-source project designed to monitor and control AI agents during execution as enterprises try to move them into production workflows. The toolkit, which is a response to the Open Worldwide Application Security Project’s (OWASP) emerging focus on AI and LLM security risks, adds a runtime security…
AI, Global Security News
OpenSSL 3.6.2 lands with eight CVE fixes
OpenSSL 3.6.2 patches eight CVEs across a range of components. The project rates the most severe issue in the release as Moderate. What got fixed The release fixes incorrect failure handling in RSA KEM RSASVE encapsulation (CVE-2026-31790) and a loss of key agreement group tuple structure when the DEFAULT keyword is used in server-side configuration…
AI, APAC, Cybersecurity, Exploits, Funding, Global Security News, Network Security, Risk Management
What Anthropic Glasswing reveals about the future of vulnerability discovery
AI giant Anthropic has unveiled Project Glasswing, a cybersecurity initiative built around Claude Mythos Preview, a model it describes as “cybersecurity in the age of AI” that can autonomously identify software vulnerabilities at scale. Rather than release the model publicly, Anthropic is restricting access to a closed consortium of more than 40 companies that includes…
Global Security News
Intel Partners With SpaceX, Tesla to Operate New Chip Plant
The Elon Musk-led companies plan to work with the semiconductor manufacturer at the Terafab project planned in Texas.
AI, Global Security News
The case for fixing CWE weakness patterns instead of patching one bug at a time
In this Help Net Security interview, Alec Summers, MITRE CVE/CWE Project Lead, discusses how CWE is moving from a background reference into active use in vulnerability disclosure. More CVE records now include CWE mappings from CNAs, which tends to produce more precise root-cause data. Automation tools help analysts map weaknesses faster, but can reinforce bad…
Global Security News
HumeLink connectivity corridor delivers digital boost for regional communities in Australian first
A critical transmission project to support Australia’s energy transition is also fixing longstanding mobile coverage gaps, with a nation-first initiative integrating telecommunications equipment directly onto electricity towers to improve reception for regional communities.
AI, Cybersecurity, Global Security News, Risk Management
AI project ‘failure’ has little to do with AI
Reports galore about AI project failures suggest that generative AI (genAI) and Agentic AI are not yet ready for enterprise use. Although there is truth to that, enterprise AI project failures are rarely because of faulty algorithms and models. More often than not, management simply doesn’t understand the technology. Let’s define failure. In the context…
AI, Cybersecurity, Data Breaches, Global Security News, malware
Attack on axios software developer tool threatens widespread compromises
A hacker briefly delivered malware this week through a popular open-source project for software developers that has an estimated 100 million weekly downloads, raising the possibility of compromises spreading widely through a supply-chain attack. Axios is a JavaScript client library used in web requests. The unknown attacker hijacked the npm account — npm being a…
AI, APAC, Data Breaches, Endpoint, Global Security News, privacy, Risk Management
HIBP Mega Update: Passkeys, k-Anonymity Searches, Massive Speed Enhancements and a Bulk Domain Verification API
For a hobby project built in my spare time to provide a simple community service, Have I Been Pwned sure has, well, “escalated”. Today, we support hundreds of thousands of website visitors each day, tens of millions of API queries, and hundreds of millions of password searches. We’re processing billions of compromised records each year…
AI, Global Security News
Amazon is aiming for a comeback in the smartphone market
Amazon plans to release a new smartphone, according to Reuters; the so-called “Transformer” project is being developed in-house and will focus on AI, personalization, and integration with Alexa. The idea is for the phone to serve as a central hub for a user’s daily life — from shopping and streaming to voice-controlled services — and…
AI, Global Security News
Jeff Bezos in Talks to Raise $100 Billion for AI Manufacturing Fund
The Amazon.com founder has traveled to the Middle East and Singapore in a fundraising effort linked to the Project Prometheus AI startup.
AI, Global Security News
Snowflake Launches Project SnowWork, Bringing Outcome-Driven AI to Every Business User
COMPANY NEWS: Designed to orchestrate planning, analysis, and execution, Project SnowWork is an autonomous enterprise AI platform that helps business users accelerate everyday work Launching in research preview to a limited set of customers, Project SnowWork handles complex, multi-step tasks and delivers real, data-driven outcomes to business users Project SnowWork brings Snowflake’s vision for the…
Exploits, Global Security News, Network Security
Project Compass Targets 764 Network as 30 Arrested and Victims Rescued
Europol’s Project Compass targets The Com (aka 764 network), an online group exploiting minors. After 30 arrests, officials say the hunt for those involved is far from over.
AI, Data Breaches, Europe, Exploits, Global Security News, Network Security
Europol’s Project Compass nets 30 arrests in crackdown on “The Com”
Europol’s Project Compass led to 30 arrests targeting ‘The Com’ network, identifying 62 victims and protecting four children from harm. A yearlong operation, code-named Project Compass, led by Europol has dealt a major blow to The Com,’ a cybercrime network known for targeting children and teenagers. The joint effort, called Project Compass and coordinated by…
AI, Endpoint, Global Security News
Thousands of Public Google Cloud API Keys Exposed with Gemini Access After API Enablement
New research has found that Google Cloud API keys, typically designated as project identifiers for billing purposes, could be abused to authenticate to sensitive Gemini endpoints and access private data. The findings come from Truffle Security, which discovered nearly 3,000 Google API keys (identified by the prefix “AIza”) embedded in client-side code to provide Google-related…
Global Security News
Europol-led crackdown on The Com hackers leads to 30 arrests
A yearlong Europol-coordinated operation dubbed “Project Compass” has led to 30 arrests and 179 suspects being tied to “The Com,” an online cybercrime collective that targets children and teenagers. […]
AI, Global Security News
Look! Up in the sky! It’s a bird! It’s a plane! No it’s a Super fast train.
The Sydney to Newcastle fast rail link project is ready to leave the station. If the $230million initiative is delivered, the journey could shrink from 2.5 hours to around one hour, transforming connectivity, productivity and regional growth across New South Wales.
Global Security News, malware
Global Threat Map: Open-source Real-time Situational Awareness Platform
Global Threat Map is an open-source project offering security teams a live view of reported cyber activity across the globe, pulling together open data feeds into a single interactive map. It visualizes indicators such as malware distribution, phishing activity, and attack traffic by geographic region. The post Global Threat Map: Open-source Real-time Situational Awareness Platform…
AI, Apps, Exploits, Global Security News, Risk Management
CredShields Leads OWASP Smart Contract Top 10 2026 as Governance and Access Failures Drive Onchain Risk
CredShields announces that the OWASP Smart Contract Security Project has officially released the OWASP Smart Contract Top 10 2026, a risk prioritization framework derived from structured analysis of 2025 smart contract incidents representing hundreds of millions in contract related losses. CredShields, supported by its exploit intelligence platforms including SolidityScan and Web3HackHub, led the structured incident…
Global Security News
Microsoft signals breakthrough in data storage that can last for generations
Microsoft announced progress on Project Silica, its research initiative focused on developing durable, long-term quartz glass-based data storage technology. Close up of Writer showing high-speed multi-beam data encoding on laser pulses (Source: Microsoft) Rising global data volumes increase the need for storage that can last for generations. Researchers believe this technology could preserve information for…
AI, Apps, Exploits, Global Security News, Risk Management
News alert: CredShields research informs OWASP’s 2026 ‘Smart Contract Security Priorities Project’
SINGAPORE, Feb. 17th, 2026, CyberNewswire — The OWASP Smart Contract Security Project has released the OWASP Smart Contract Top 10 2026, a risk prioritization framework developed from structured analysis of real world exploit data observed across blockchain ecosystems in 2025. Crypto protocols continued to experience significant smart contract failures in 2025, with exploit patterns increasingly pointing…
Global Security News
Essential Skills for Project Managers in the Digital Age
When you think about project management, you think about connection; you cannot have one without the other! A project manager is the golden thread that stitches together people, plans, and priorities.
AI, APAC, Apps, Compliance, Global Security News, Risk Management
Task management software gets an agentic boost
The digital workplace has outgrown the simple project checklists you may have once associated with task management apps. The software has moved from passive repositories for to-do lists to active participants in workflows. In 2026, the biggest shift in task management applications is the rise of agentic AI. The category has moved from simple automation…
AI, Global Security News, Microsoft, News, OneDrive
Microsoft brings project-focused AI agents into OneDrive
Teams often rely on shared document collections to track project history, decisions, and operational knowledge. To support this workflow, Microsoft introduced Agents in OneDrive, allowing users to create AI assistants built from selected files and folders. The feature allows users to group project plans, meeting notes, technical specifications, presentations, and research materials into a single…
AI, GitHub, Global Security News, Microsoft, News, open source, operating system
Microsoft launches LiteBox, a security-focused open-source library OS
Microsoft has released LiteBox, a project intended to function as a security-focused library OS that can serve as a secure kernel for protecting a guest kernel using virtualization hardware. LiteBox was developed in collaboration with the Linux Virtualization Based Security (LVBS) project. The goal is to isolate and protect a normal guest kernel by running…