Anthropic Expands Project Glasswing to 150 Orgs

Abstract representation of Anthropic’s Project Glasswing expanding to critical infrastructure. (AI-generated image, Anthropic)

Anthropic Expands Project Glasswing to 150 New Organizations Across 15 Countries

Clayton Rifkind June 3, 2026

Power, water, and healthcare companies join the program as Anthropic warns that within a year, AI models will become more powerful, cheaper, and widely available, including to cybercriminals.

Anthropic is extending Project Glasswing to approximately 150 new organizations in more than 15 countries, adding sectors not represented in its initial cohort, including power, water, healthcare, communications, and hardware. Each new partner must meet Anthropic’s security requirements before gaining access to Claude Mythos Preview (“Mythos”).

In April, Anthropic announced that roughly 50 initial partners, including NVIDIA, Apple, Google, Microsoft, and Amazon, had begun using Mythos to scan their codebases. Those partners found more than 10,000 high- or critical-severity security flaws in the first weeks of the program.

The new partners share one characteristic: scale of exposure. For most, Anthropic estimates a successful attack on their codebase could affect more than 100 million people, with consequences for both national and global security. Many are vendors whose software underpins systems relied on by other organizations worldwide, including governments.

Anthropic increased participation out of concern that other AI companies will likely have Mythos-class models within 6 to 12 months and could release them without safeguards that prevent misuse. In that scenario, AI-assisted cyberattacks become significantly more common and harder to predict. The company frames Project Glasswing as a way to establish operating norms before that happens.

Anthropic notes that finding vulnerabilities is no longer the bottleneck: getting them patched is. Partners now use Mythos to write patches and run pre-release checks on their own code, not just to surface problems. Anthropic says the model can also be used for penetration testing, threat detection and response, and rebuilding legacy codebases in memory-safe languages. This week, Google released AI Threat Defense, an advanced cyber detection model that also automatically applies patches.

Anthropic said it plans to further expand Glasswing, prioritizing critical infrastructure providers, open-source software maintainers, and safety testers. It is also scaling its Cyber Verification Program, which would grant Mythos-class capabilities to more organizations for specific defensive tasks. General access to Mythos, the company said, requires safeguards no AI developer has yet built.

Clayton Rifkind

Clayton Rifkind is the Founder and Senior Editor of AI Risk Today. He also advises on content development for esgtoday.com, a leading source of ESG investment news and research for institutional investors and corporate leaders. He has 20+ years experience in B2B technology marketing, leading strategy and execution of go-to-market plans across software, enterprise platforms, and mobile applications. He also founded two marketing consultancies, advising startups and Fortune 1000 companies, including Autodesk, Intel, and Microsoft. Clayton began his career in the San Francisco advertising scene, working with brands such as Hewlett-Packard, Intel, Microsoft, Symantec, and Wells Fargo.

Essential AI Risk Intelligence

Daily insights on AI governance, regulation, and enterprise risk management. Trusted by Chief Risk Officers and compliance leaders globally.

By subscribing, you agree to receive our daily newsletter. Unsubscribe anytime.