AI Models Accelerate Bug Discovery Across Major Software Systems
Similar Articles
New AI Models Show Advanced Cybersecurity Capabilities in UK Safety Tests
AI Firms Brief Congress on Advanced Cybersecurity Models and Risks
Mozilla Details AI Tool That Found 271 Firefox Security Flaws in Two Months
OpenAI Rolls Out Less Restricted GPT-5.5-Cyber to Vetted Security Defenders
U.S. Cyber Command to Deploy Top AI Models for Cyber Operations
Anthropic and OpenAI have released AI models capable of identifying thousands of software bugs, significantly increasing the rate of discovery for major cybersecurity firms. Microsoft and other organizations are already deploying these systems to find vulnerabilities in their own products. The technology appears to be improving autonomously, though it currently produces a notable number of false positives.
Facts First
- Anthropic's Mythos Preview identified tens of thousands of bugs across nearly every operating system.
- OpenAI's GPT-5.5-Cyber has comparable bug-finding capabilities to Mythos, according to third-party testing.
- Palo Alto Networks found 75 bugs using the AI models, far exceeding its typical monthly rate of 5-10.
- Microsoft's new AI security system identified 16 new vulnerabilities in Windows networking and authentication.
- The U.K. AI Security Institute reports Mythos is improving autonomously with more computing power.
What Happened
Anthropic unveiled Mythos Preview, an AI model that has identified tens of thousands of bugs across nearly every operating system. Third-party testing indicates OpenAI's GPT-5.5-Cyber has capabilities for finding bugs and writing exploits comparable to Anthropic's Mythos. Major cybersecurity firms and tech companies are already reporting results from using these models. Palo Alto Networks reported finding 75 bugs using both Anthropic and OpenAI models, compared to their usual discovery rate of 5-10 bugs per month. Microsoft stated that its new agentic security system identified 16 new vulnerabilities in the Windows networking and authentication stack.
Why this Matters to You
The widespread adoption of these AI tools by security companies and software developers may lead to more secure software on your devices and at your workplace. This could mean fewer vulnerabilities for attackers to exploit in the operating systems and applications you use daily. However, the current high false positive rate—Palo Alto Networks observed approximately 30% across its products—means human experts will remain essential to verify findings, which could slow immediate benefits.
What's Next
Cisco's release of 'Foundry Security Spec' may help standardize and spread these security practices. The technology is likely to continue evolving rapidly; the U.K. AI Security Institute published research stating that Mythos is improving on its own and that additional computing power can significantly improve autonomous cyber capabilities without new model releases. As the models are trained on specific environments, their accuracy may increase, potentially leading to faster and more reliable vulnerability patching across the software ecosystem.