The Claude Mythos, Project Glasswing Shockwave

(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.)

Three Buddy Problem - Episode 93: We discuss Anthropic's release of Claude Mythos Preview (an AI model so capable and dangerous they won't release it publicly) and debate the looming patching crisis, bug bounty extinction, possible US government nationalization of frontier labs, and why the NSA might not be thrilled about all this bug-fixing.

Plus, North Korea's six-month Drift Protocol con job, APT28's retro DNS hijacking campaign, and Microsoft's driver signing mess hitting WireGuard and VeraCrypt.

Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.

0:00 — Opening banter
1:36 — Claude Mythos Preview, Project Glasswing Announcement
7:22 — Parsing the Hype: Is Mythos Really a Step Change?
11:31 — Costin's Take: Is This All a PR Stunt?
17:10 — The Patching Problem: What Happens After the Zero Days?
28:11 — Bug Bounty Programs Under Threat from AI
33:37 — What Will Companies Actually Do With Mythos?
45:09 — Geopolitics: Where Is the US Government? Nationalization Talk
53:01 — Source Code vs. Binary: The Real Limits of Mythos
1:00:01 — Model Recklessness, Guardrails and the Psychiatrist
1:06:17 — Fortinet: Another Zero Day, No Patch, No IOCs
1:09:08 — North Korean Drift Protocol Heist: $285 Million Stolen
1:24:39 — SOHO Router DNS Hijacking: APT28 and FBI Disruption
1:32:34 — Microsoft Suspensions Hit WireGuard, VeraCrypt, OSR
1:38:49 — Shout-Outs, Conferences & Closing

• Transcript
• TLPBLACK
• Claude Mythos Preview
• Accidental data leak reveals existence of Anthropic Mythos
• Project Glasswing
• System Card: Claude Mythos Preview
• Axios: OpenAI plans new product for cybersecurity use
• The $285M Drift Protocol Heist Was ‘6 Months in the Making’
• Drift Protocol - Incident Report
• US Treasury to share threat-intel with crypto companies
• Fortinet customers confront actively exploited zero-day
• Fortinet advisory: CVE-2026-35616 (exploited in the wild)
• SOHO router compromise leads to DNS hijacking
• APT28 exploit routers to enable DNS hijacking operations
• DOJ Conducts Court-Authorized Disruption of DNS Hijacking Network Controlled by a Russian Military
• Lumen on 'Frost Armada' Forest Blizzard DNS Hijacking
• WireGuard (Account Suspended)
• OSR on Microsoft Driver Signing Lockout
• Microsoft: Account Verification for Windows Hardware Program
• US Warns of Iran-Linked Cyber Hacks on Water, Energy Systems
• CISA bulletin: Iranian Hackers Exploiting PLCs Across US Critical Infrastructure
• Watch S4: The Bob Lazar Story
• YouTube: Dan Guido at [un]prompted