METR says it can barely measure Claude Mythos, Palo Alto Networks warns of autonomous AI attackers - the-decoder.com

Detailed Analysis

METR (Model Evaluation & Threat Research), an independent AI safety organization focused on evaluating frontier model capabilities, has reportedly assessed a new Anthropic model called Claude Mythos and found that its capabilities are straining or exceeding the boundaries of existing evaluation methodologies. The core significance of the finding is not merely a benchmark score, but a more fundamental warning: that the tools and frameworks the AI safety community relies upon to measure and characterize advanced AI systems may be becoming inadequate as model capabilities advance. This represents a notable admission from one of the field's most rigorous evaluators.

The inability to reliably measure a model's capabilities carries profound implications for AI governance and deployment decisions. Evaluation infrastructure has historically served as the foundation for safety determinations — if a model cannot be adequately assessed, it becomes significantly harder to establish meaningful deployment guardrails, communicate risk levels to regulators, or make informed decisions about what tasks a system should and should not be permitted to perform. METR's finding suggests that capability growth in frontier models like Claude Mythos may be outpacing the development of interpretability and evaluation science, a gap that AI safety researchers have long warned could become a serious structural problem in the field.

The concurrent warning from Palo Alto Networks about autonomous AI attackers adds an urgent cybersecurity dimension to this evaluation gap. As one of the world's leading cybersecurity firms, Palo Alto's public concern signals that the threat landscape is shifting from AI-assisted human attackers toward fully autonomous AI-driven offensive operations — systems capable of identifying vulnerabilities, crafting exploits, and executing attacks with minimal or no human direction. The pairing of these two stories in the same news cycle is notable: if frontier AI models are simultaneously becoming harder to evaluate and increasingly capable of being weaponized for autonomous cyberattacks, the risk surface expands in compounding ways.

Taken together, the two developments reflect a broader tension running through the current phase of AI development — a race between capability growth and the institutional, technical, and regulatory infrastructure needed to manage it responsibly. Anthropic has positioned itself as a safety-focused lab, and Claude models have been subject to extensive third-party evaluation precisely because of that mission. Yet METR's difficulty in measuring Claude Mythos suggests that even best-effort safety-conscious development cannot fully escape the fundamental challenge that sufficiently advanced systems become harder to characterize. This dynamic is likely to intensify pressure on governments, standards bodies, and the AI industry to accelerate investment in evaluation science, red-teaming infrastructure, and autonomous threat detection before the gap widens further.