Anthropic and OpenAI are now cybersecurity's kingmakers
Add Axios as your preferred source to
see more of our stories on Google.
Illustration: Shoshana Gordon/Axios
Frontier AI labs are converging on a new strategy for controlling their most cyber-capable models while still commercializing them: selective access.
Why it matters: OpenAI's trusted-access program and a pending program from Anthropic are creating a new power center in cybersecurity where AI companies help decide which defenders can use the most advanced cyber capabilities.
- For decades, competitive advantage in cybersecurity largely came from talent, data and infrastructure. Now, it also comes from access to models.
Driving the news: Anthropic announced Tuesday it will make a version of its Mythos class of models, Fable 5, available to the general public.
- Fable 5 includes protections that block some high-risk cybersecurity and biology requests and instead route users who ask about those issues to Claude Opus 4.8.
- At the same time, Anthropic is offering users of its restricted Mythos Preview program an upgrade to its new Mythos 5 model.
- Dianne Penn, Anthropic's head of product management for research and labs, tells Axios the company is being deliberately conservative at launch, meaning some legitimate security work may also get routed away from Fable 5.
The intrigue: Anthropic is also working on a formal trusted-access program that would determine who gets access to Mythos 5 and future less restricted models.
- The company has not provided a timeline for launching the program.
- Behind the scenes, organizations have spent the last two months lobbying Anthropic for access to Mythos Preview.
- Last week, the company expanded access to more than 200 companies and governments.
The big picture: OpenAI is already using a similar two-tier system.
- The company has been vetting security researchers and organizations to decide who gets access to models that could help accelerate their cyber defenses.
- The company rolled out an alternate version of its GPT-5.5 model with fewer guardrails to let those cyber defenders hunt for bugs, study malware and reverse engineer attacks.
Between the lines: It's now up to the AI labs to decide who gets access to the cybersecurity industry's most cutting-edge capabilities.
- Security vendors, researchers and critical infrastructure operators eager to get frontier AI into their products and workflows have been scrambling for access.
Reality check: Selective access gives Anthropic and OpenAI the best of both worlds, allowing them to ensure scary hacking capabilities are only in the hands of the good guys — while also finding a way to monetize their increasingly powerful models as they consider entering the public markets.
What to watch: Whether trusted-access users begin finding vulnerabilities, conducting research and building products that organizations without access simply can't match.
Go deeper: Tapping the powers of Mythos-like models still requires human intervention
