%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Recently, the Claude Mythos AI model developed by Anthropic company experienced an embarrassing security incident. The model was considered unsuitable for public release due to its outstanding network security capabilities, but it was recently obtained by a small group of unauthorized users. According to a report by Bloomberg, hackers had already gained access to Mythos since Anthropic announced that it would provide the model for testing to a few companies. This incident poses a serious challenge to Anthropic, which has always emphasized AI safety.
On the technical level, this breach of Mythos appeared quite simple. According to reports, the hacker group successfully infiltrated Mythos by making "well-informed guesses" about the online location of Mythos, combined with information leaked from other models of Anthropic at Mercor company, and the internal knowledge obtained by one of the members through evaluating contracts for Anthropic models. This incident did not result from a complex technical attack, but rather from a combination of some internal information and luck.
Security vulnerabilities are inevitable. The information leaked from Mercor company allowed hackers to guess the exact location of Mythos. Pia Hüsch, a researcher from the Royal United Services Institute (RUSI) in the UK, stated that no company can be completely secure, and humans are often the weakest link. Although this incident seemed to have some element of luck, it did not cause serious consequences.
Anthropic failed to anticipate this "completely imaginable" failure, however, this incident has sounded the alarm for technology companies, reminding them to remain highly vigilant when facing potential risks to prevent similar incidents from happening again.
Key Points:
- 🔒 The Mythos model of Anthropic is unsuitable for public release due to its strong network security capabilities, but it was successfully hacked.
- 🕵️♂️ Hackers gained access to Mythos by making simple guesses and using internal information, highlighting the risk of security vulnerabilities.
- ⚠️ Experts point out that technology companies need to remain alert at all times to avoid similar security incidents.