Microsoft not only produces some of the most widely used software globally but is also one of the largest contractors with the US government. Now, the US National Security Agency (NSA) is leveraging Anthropic's advanced AI model, Mythos, to identify potential cybersecurity vulnerabilities in the software giant's products.
NSA Testing Mythos for Security Flaws
According to a Bloomberg report citing a US official and a person familiar with the matter, the NSA has been testing Anthropic's Mythos model to detect security flaws in widely used software, including Microsoft products. The individuals stated that the agency has been impressed by the model's speed and efficiency in identifying weaknesses.
AI's Growing Role in Cybersecurity
The NSA's cybersecurity directorate is among the teams examining Mythos, comparing its results with existing tools and internal research processes. While officials did not disclose whether any specific vulnerabilities have been found, the evaluation signals growing interest in AI-driven security testing.
Anthropic initially released Mythos to a limited group of organizations, encouraging them to use it to identify flaws before malicious actors can exploit them. However, the company chose not to make the model public, citing concerns that attackers could misuse it. The model's capabilities have also raised concerns at the policy level. Reports indicate that the White House is opposing plans to expand access to additional organizations, reflecting broader caution around powerful AI systems in sensitive domains.
Complex Relationship with Government
The NSA's testing comes amid a complex relationship between Anthropic and US government agencies. The Pentagon earlier designated the company and its products as a potential supply chain risk, with US Defense Secretary Pete Hegseth stating that the department would move away from Anthropic services.
Anthropic has challenged that designation in court and recently secured an order blocking restrictions on government use of its technology. CEO Dario Amodei has also met with White House officials to discuss how a controlled version of Mythos could be used within federal systems.
Microsoft's Response
Microsoft responded to questions about the testing with a general statement: “We work closely with government customers to continuously harden our platforms, applying deep expertise, advanced technologies and lessons learned to meet evolving threats.”
Broader Implications
The NSA's use of Mythos reflects a broader shift toward integrating AI into cybersecurity workflows, even as questions remain about how such tools should be deployed and controlled. This development underscores the increasing reliance on artificial intelligence to safeguard critical digital infrastructure.
