パロアルトのセキュリティ企業が、Anthropicの「Claude Mythos Preview」を活用し、わずか5日間でmacOSの有効なエクスプロイトを構築したと発表しました。研究チームはApple Parkを訪問し、Appleの担当者に対して調査結果を共有しました。
カリフォルニア州パロアルトに拠点を置くCalifの研究者らは、Anthropicの「Claude Mythos Preview」の支援を受けて、macOS向けの権限昇格エクスプロイトを設計しました。このツールは既知の脆弱性クラスを迅速に特定しましたが、コードを完成させるには依然として人間の専門知識が不可欠でした。作成されたエクスプロイトにより、通常は制限されているMacBookの領域へアクセスが可能となり、M5チップを搭載したデバイスにおいて攻撃者が制御権を奪取できることが確認されました。
AIによるレポート AIによって生成された画像
Anthropic has limited access to its Claude Mythos Preview AI model due to its superior ability to detect and exploit software vulnerabilities, while launching Project Glasswing—a consortium with over 45 tech firms including Apple, Google, and Microsoft—to collaboratively patch flaws and bolster defenses. The announcement follows recent data leaks at the firm.
Anthropic has released a new cyber-focused AI model called Mythos, capable of detecting software flaws faster than humans and generating exploits. The model has raised alarms among governments and companies for potentially turbocharging hacking by exposing vulnerabilities quicker than they can be patched. Officials worldwide are scrambling to assess the risks.
AIによるレポート
Following last week's unveiling that sparked global alarms, Anthropic has restricted its powerful Mythos AI—adept at finding cybersecurity vulnerabilities—to select firms under Project Glasswing, including Amazon Web Services, Apple, and Google, after an accidental leak raised national security concerns.
Cybersecurity researchers have identified a fraudulent website mimicking the popular AI tool Claude that delivers backdoor malware to visitors. The discovery highlights how cybercriminals are capitalizing on growing interest in artificial intelligence platforms.
AIによるレポート
Anthropic's Claude AI app has hit the top spot on Apple's App Store free apps chart, overtaking ChatGPT and Gemini, fueled by public support following President Trump's federal ban on the tool over Anthropic's AI safety refusals.
Germany's financial regulator BaFin has warned banks about risks from Anthropic's Claude Mythos AI model, following US Treasury alerts. The model autonomously detects IT vulnerabilities at scale, potentially accelerating cyberattacks. US banks are testing it amid restrictions.
AIによるレポート
Anthropic has filed a federal lawsuit against the US Department of Defense, challenging its recent label of the AI company as a supply-chain risk. The dispute stems from a contract disagreement over the use of Anthropic's Claude AI for military purposes, including restrictions on mass surveillance and autonomous weapons. The company argues the designation violates free speech and due process rights.