Anthropic plans Project Glasswing expansion in UK, may offer Claude Mythos early access to … - The Times of India

Detailed Analysis

Anthropic's Project Glasswing represents one of the most ambitious defensive cybersecurity initiatives in the history of AI development, bringing together a coalition of over 50 major technology and financial organizations to collectively leverage Claude Mythos Preview — an unreleased frontier model — in the service of securing critical software infrastructure. Launch partners include some of the most influential players in global technology and finance: Amazon Web Services, Apple, Cisco, CrowdStrike, Google, JPMorganChase, Microsoft, NVIDIA, and Palo Alto Networks, among others. The centerpiece of the initiative is Mythos Preview's demonstrated capacity to autonomously discover zero-day vulnerabilities — previously unknown security flaws — across major operating systems and web browsers at scale. Anthropic has already documented the model identifying thousands of such vulnerabilities, a capability that, if properly channeled, could fundamentally shift the asymmetry between attackers and defenders in the cybersecurity landscape.

The financial architecture underpinning Project Glasswing signals the seriousness with which Anthropic is treating the initiative. The company has committed up to $100 million in usage credits for Mythos Preview access, supplemented by $4 million in direct donations to open-source security organizations. This level of resource commitment is notable not only for its scale but for its structure — by subsidizing usage costs, Anthropic is removing a significant barrier to adoption among organizations that might otherwise be unable to afford frontier AI capabilities for defensive security work. The model's ability to simulate multi-stage cyberattacks and reason across complex, interconnected systems elevates it beyond conventional vulnerability scanning tools and into territory that demands both careful governance and rapid deployment to defenders.

The planned expansion into the United Kingdom adds a geopolitical dimension to what began as a largely US-centric initiative. Anthropic's intention to open a London office in the first quarter of 2027, scaling from approximately 200 UK employees to as many as 800, reflects a strategic move to embed the company more deeply in one of the world's leading financial centers. The extension of Mythos Preview access to UK financial institutions as part of this expansion suggests that Anthropic views the financial sector — with its dense, high-value digital infrastructure and chronic vulnerability to sophisticated cyberattacks — as a priority vertical for the initiative. The selection of the UK as the first major international expansion point also likely reflects the country's relatively mature regulatory environment for AI and its established financial regulatory apparatus.

The regulatory response to Project Glasswing underscores the dual-use anxiety that surrounds a model of Mythos Preview's capabilities. The fact that US Treasury Secretary Scott Bessent and Federal Reserve Chair Jerome Powell convened emergency discussions with Wall Street leaders, while Bank of England Governor Andrew Bailey issued public warnings about the pace of regulatory evaluation, reflects a recognition that a tool powerful enough to discover thousands of zero-day vulnerabilities is equally capable of enabling offensive operations if misappropriated. Anthropic's decision to withhold general release of Mythos and instead gate access through a structured, vetted coalition is a deliberate attempt to navigate this tension — prioritizing defenders while limiting the model's availability to actors who could weaponize it.

Project Glasswing fits within a broader trend of frontier AI labs moving beyond consumer and enterprise productivity use cases to position their most capable models as infrastructure-level tools for systemic risk management. Much as earlier generations of AI were applied to fraud detection and network anomaly identification, Mythos Preview represents an order-of-magnitude escalation in what AI can contribute to cybersecurity — one that operates at the level of vulnerability discovery rather than merely pattern-matching on known threats. The initiative also reflects a maturing recognition within the AI industry that the responsible deployment of powerful models may require not just safety guardrails and usage policies, but active, funded coalitions of institutional partners who can absorb, apply, and govern capabilities that are too consequential to release into open markets without coordination.