Tag
The author argues that memory-unsafe open-source software is critically vulnerable to upcoming AI bug-finding agents, making memory safety a moral imperative, and that Rust must succeed as the leading memory-safe language with no overhead.
Anthropic is expanding Project Glasswing, its collaborative cybersecurity effort, to approximately 150 new organizations across multiple countries and industries, providing them access to Claude Mythos Preview to find vulnerabilities in critical software.
PromptAudit is a controlled evaluation framework that isolates the effects of prompt formulations on LLM-based vulnerability detection, finding that chain-of-thought prompting achieves the best overall performance while prompt sensitivity must be treated as a first-class system property.
Anthropic's Project Glasswing has used Claude Mythos Preview to find over 10,000 high or critical severity vulnerabilities in critical software, with partners like Cloudflare reporting a tenfold increase in bug finding rates, highlighting the shift from discovery to patching as the bottleneck.
Dan Jeffries comments on Cloudflare's testing of Anthropic's Mythos, arguing that the real conversation should focus on practical security improvements against AI-powered attacks, and that AI will ultimately make software more secure if teams adapt their workflows.
Vitalik Buterin shares an optimistic take on AI-assisted formal verification as a path to secure, trustless code, linking to his blog post explaining the basics of formal verification using Lean.
Google CEO Sundar Pichai warns that current frontier AI models may already be capable of breaking the security of almost all existing software, highlighting significant cybersecurity risks.
OpenAI Daybreak is a cybersecurity initiative that leverages AI models and Codex to integrate vulnerability detection, patch validation, and threat modeling directly into the software development lifecycle. The program aims to make software resilient by design while implementing safeguards to prevent misuse of its advanced cyber capabilities.
Anthropic has launched Project Glasswing, leveraging its advanced Claude Mythos model to help critical software organizations identify and fix vulnerabilities, with the goal of enhancing global software security through collective defense.