JPMorganChase Joins Anthropic's Project Glasswing
"Given the rate of AI progress, it will not be long before such capabilities proliferate, potentially beyond actors who are committed to deploying them safely."
On April 6, JPMorganChase CEO Jamie Dimon published his annual shareholder letter. In it, he warned that AI introduces serious new risks, specifically naming cybersecurity vulnerabilities, deepfakes, and misinformation.
"These risks are real, but they are manageable if companies, regulators, and governments prepare," he wrote. The following day, JPMorganChase joined Anthropic's Project Glasswing as a founding launch partner.
Project Glasswing, announced on April 7, brings together twelve technology and financial institutions to use Claude Mythos Preview, Anthropic's most advanced and unreleased frontier AI model, for defensive cybersecurity work across critical global software infrastructure.
The other launch partners are Amazon Web Services, Apple, Broadcom, Cisco, CrowdStrike, Google, the Linux Foundation, Microsoft, Nvidia, and Palo Alto Networks.
Anthropic formed Project Glasswing after observing that Claude Mythos Preview had reached a level of coding capability where it can surpass all but the most skilled humans at finding and exploiting software vulnerabilities.
Over the past several weeks, the model identified thousands of zero-day vulnerabilities, flaws previously unknown to software developers, across every major operating system and every major web browser, according to the company.
Among the findings was a 27-year-old bug in the open-source operating system OpenBSD. Anthropic has no plans to make Claude Mythos Preview generally available.
"Given the rate of AI progress, it will not be long before such capabilities proliferate, potentially beyond actors who are committed to deploying them safely," the company said. "The fallout, for economies, public safety, and national security, could be severe. Project Glasswing is an urgent attempt to put these capabilities to work for defensive purposes."
For JPMorganChase, the timing of the participation is notable. Dimon's April 6 letter described AI cybersecurity risks as real and structural, not hypothetical.
"Huge technological shifts like AI always have second and third-order effects as well that can deeply impact society," he wrote. Project Glasswing represents the bank's first public commitment to addressing those risks through a named external initiative.
In a statement published on Anthropic's announcement page, JPMorganChase said: "Promoting the cybersecurity and resiliency of the financial system is central to JPMorganChase's mission, and we believe the industry is strongest when leading institutions work together on shared challenges."
They also said that Project Glasswing provides a unique, early stage opportunity to evaluate next-generation AI tools for defensive cybersecurity across critical infrastructure both on their own terms and alongside respected technology leaders. They will also take a rigorous, independent approach to determining how to proceed and where we can help.
Project Glasswing partners will use Claude Mythos Preview for local vulnerability detection, black box testing of binaries, securing endpoints, and penetration testing.
Anthropic is committing up to $100 million in model usage credits to cover usage during the research preview. More than 40 additional organizations that build or maintain critical software infrastructure have also been given access.
Anthropic said it has been in ongoing discussions with US government officials about Claude Mythos Preview and its offensive and defensive cyber capabilities, and intends to report publicly within 90 days on vulnerabilities fixed and improvements made.