Skip to main content

Microsoft Turns to Anthropic’s Mythos to Improve Cyber Defense

Microsoft has unveiled plans to incorporate Anthropic’s Claude Mythos Preview model and other AI models into its Security Development Lifecycle, embedding AI directly into the stages where code is written and tested.

Rather than relying primarily on static analysis tools, Microsoft is adopting AI models capable of analyzing code dynamically and identifying complex vulnerabilities that might otherwise go undetected until later stages of development.

Released on April 7, Anthropic’s Mythos model has already demonstrated a previously unmatched ability to uncover critical flaws across operating systems and widely used software. Anthropic claimed that the model’s ability to find security vulnerabilities is so advanced that it should not be released to the public.

Microsoft gained access to the model through Anthropic’s Project Glasswing, a program that grants limited access to select tech firms for cybersecurity research. Within this framework, Microsoft is reporting measurable improvements to cybersecurity.

Microsoft’s strategy focuses on embedding AI deeper into the security workflow while extending its impact beyond internal development. Within engineering teams, AI models are being applied earlier in the coding process to identify and remediate issues before software is finalized.

For customers, Microsoft aims to provide clearer visibility into risk exposure across infrastructure, including patching gaps and externally accessible systems. In parallel, the company is building tools that can manage vulnerability detection and remediation at scale, including a multi-model scanning platform expected to enter preview in 2026.

Microsoft’s platforms, of course, form a substantial portion of global IT infrastructure. Enhancements to the company’s internal security practices could strengthen protections across this ecosystem without requiring direct adoption of the underlying AI models.

New Risks

The rise of advanced AI introduces a host of new risks. The same systems that accelerate vulnerability detection can also be used to identify and exploit weaknesses more quickly. Microsoft acknowledged that today’s AI capabilities are compressing the window between discovery and attack, increasing the importance of rapid mitigation.

Earlier, less reliable generations of security tools focused on identifying known issues through predefined rules. AI-driven systems, by contrast, can adapt based on prior findings, simulate attack scenarios, and operate continuously as code evolves. This is redefining expectations for securing software before deployment.

Despite these advances, any IT pro will tell you that AI cannot completely replace human expertise. Because these models rely on learned patterns, they may struggle to identify entirely new categories of vulnerabilities. Human oversight remains critical, particularly in high-risk or completely new scenarios.



from DevOps.com https://ift.tt/QsT9bjI
Labels:

Comments

Post a Comment

Popular posts from this blog

Claude Code’s Ultraplan Bridges the Gap Between Planning and Execution

Planning a complex code change is hard enough. Reviewing it in a terminal window shouldn’t make it harder. Anthropic is addressing that friction with a new capability called Ultraplan, currently in research preview as part of Claude Code. The feature moves the planning phase of a coding task from your local terminal to the cloud — and gives developers a richer environment to review, revise, and approve a plan before a single line of code changes. It’s a small workflow shift with real practical value, especially for teams working on large-scale migrations, service refactoring, or anything that requires careful coordination before execution begins. How it Works Ultraplan connects Claude Code’s command-line interface (CLI) to a cloud-based session running in plan mode. When a developer triggers it — either by running /ultraplan followed by a prompt, typing the word “ultraplan” anywhere in a standard prompt, or choosing to refine an existing local plan in the cloud — Claude picks u...
Post a Comment
Read more

Java 26 Arrives With AI Integration and a New Ecosystem Portfolio — What It Means for DevOps Teams

Oracle released Java 26 on March 17, 2026, and while every six-month release comes with its own set of improvements, this one carries a broader message: Java isn’t just keeping pace with the AI era — it’s actively positioning itself as the infrastructure layer where AI workloads will run. For DevOps teams managing large Java estates, that’s worth paying attention to. The Scale of What You’re Already Running Before getting into what’s new, it helps to remember what’s already in place. According to a 2025 VDC study, Java is the number one language for overall enterprise use and for cloud-native deployments. There are 73 billion active JVMs running today, with 51 billion of those in the cloud. That scale matters when you’re thinking about where AI fits in. Most of the systems where agentic AI will eventually operate — transactional platforms, backend services, data pipelines — are already running on Java. The question for DevOps teams isn’t whether to adopt Java for AI. It’s how to ...
Post a Comment
Read more

Claude Code Can Now Run Your Desktop

For most of its short life, Claude has lived inside a chat window. You type, it responds. That model is changing fast. Anthropic recently expanded Claude Code and Claude Cowork with a new computer use capability that lets the AI directly control your Mac or Windows desktop — clicking, typing, opening applications, navigating browsers, and completing workflows on your behalf. It’s available now as a research preview for Pro and Max subscribers. The short version: Claude can now do things at your desk while you’re somewhere else. How it Actually Works Claude doesn’t reach for the mouse first. It prioritizes existing connectors to services like Slack or Google Calendar. When no connector is available, it steps up to browser control. Only when those options don’t apply does it take direct control of the desktop — navigating through UI elements the way a human would. Claude always requests permission before accessing any new application, and users can halt operations at any point. T...
Post a Comment
Read more