{"id":13469,"date":"2026-06-09T05:03:46","date_gmt":"2026-06-09T05:03:46","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/06\/09\/anthropics-project-glasswing-update-html\/"},"modified":"2026-06-09T05:03:46","modified_gmt":"2026-06-09T05:03:46","slug":"anthropics-project-glasswing-update-html","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/06\/09\/anthropics-project-glasswing-update-html\/","title":{"rendered":"Anthropic\u2019s Project Glasswing Update"},"content":{"rendered":"\n
Anthropic\u2019s Project Glasswing Update<\/div>\n

\t

\n
<\/BR>
\n
\n \t

\n
<\/BR><\/p>\n

\n

In April, Anthropic initated Project Glasswing<\/a>. The idea was to let companies use their new model to find and fix vulnerabilities in their own software. It was a fantastic PR move, and so many press outlets have uncritically parroted Anthropic\u2019s claims that it\u2019s now common wisdom that Mythos is better at finding software vulnerabilities than other models. Which is just not<\/a> true<\/a>.<\/p>\n

In any case, Anthropic has published<\/a> a Project Glasswing status report. It\u2019s finding a lot<\/a> of vulnerabilities in software\u2014yay! Some of them are even dangerous. But almost none of them has been patched. It\u2019s weird<\/a>. There\u2019s something fishy about the data that I don\u2019t understand. That Anthropic refuses to release details\u2014that it just says \u201ctrust us\u201d\u2014is a big problem<\/a> here.<\/p>\n<\/div>\n

\t

\n
<\/BR>
\n Bruce Schneier
\n \t

\n
<\/BR>
\nGo to bruce schneier<\/a>
\n \t

\n
<\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"

Anthropic\u2019s Project Glasswing Update In April, Anthropic initated Project Glasswing. The idea was to let companies use their new model to find and fix vulnerabilities in their own software. It was a fantastic PR move, and so many press outlets have uncritically parroted Anthropic\u2019s claims that it\u2019s now common wisdom that Mythos is better at […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[167,57,476,1,416],"tags":[87],"class_list":["post-13469","post","type-post","status-publish","format-standard","hentry","category-ai","category-bruce-schneier","category-patching","category-uncategorized","category-vulnerabilities","tag-bruce-schneier"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/13469"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=13469"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/13469\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=13469"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=13469"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=13469"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}