Bharti Airtel and Vodafone Idea are reviewing the security practices of their network software vendors after Claude Mythos Preview, an artificial intelligence (AI) model released by US-based Anthropic on April 7, autonomously found and exploited software vulnerabilities that had survived decades of human review, Moneycontrol reported.
India’s nodal cybersecurity agency, the Indian Computer Emergency Response Team (CERT-In), issued a High-severity rating advisory on April 26, directly citing the AI model, warning organisations to treat every newly disclosed vulnerability as exploitable within hours, not weeks.
Why this matters for ordinary users: Airtel and Vodafone Idea (Vi) hold the call records, location data, and payment information of hundreds of millions of Indians. Their core network software runs on systems built and maintained by vendors like Nokia, Ericsson, and Samsung, meaning the operators themselves cannot patch vulnerabilities. An AI that finds those vulnerabilities faster than any human team compresses the window for attackers to exploit them before a fix arrives.
What Claude Mythos is, and why it matters: Every app, website, and telecom network runs on software. That software has bugs, some hidden for years, even decades, that attackers can exploit to break in and steal data. Finding those bugs has always required rare, expensive human expertise and months of painstaking work. That is the only reason most of them stayed hidden for so long.
Claude Mythos Preview changes that. It is an AI model that can read software code, identify hidden flaws, and figure out how to exploit them, entirely on its own, in hours, across thousands of programmes simultaneously. It does not get tired, does not need a salary, and does not need a decade of security training. Anyone with access to it gets, effectively, an army of expert hackers available at the push of a button.
To understand the scale of what it found during testing: Claude Mythos Preview identified thousands of zero-day vulnerabilities across every major operating system and every major web browser. A zero-day vulnerability is a flaw that even the software’s own developers did not know existed; there is no fix available the moment it is discovered, so whoever finds it first, defender or attacker, holds a complete advantage. Confirmed examples from Anthropic’s red team blog:
- A 17-year-old flaw in FreeBSD that lets an attacker gain complete control of a server from anywhere on the internet, with no human involved, after the initial prompt
- A 27-year-old bug in OpenBSD, an operating system that security experts consider extremely hard to compromise attackers
- A 16-year-old flaw in FFmpeg, software that handles video playback on billions of devices
Why Anthropic restricted it: Anthropic acknowledged that the same capabilities that can bolster cyber defences can also be weaponised by attackers, and privately warned top government officials that Mythos…
Source link
Disclaimer
We strive to uphold the highest ethical standards in all of our reporting and coverage. We blogs.grocliq.com want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.
Website Upgradation is going on for any glitch kindly connect at [email protected]
