Anthropic released Claude Opus 4.6, highlighting improved agentic coding performance (code review, debugging, and sustained work over large codebases) and expanded safety evaluation coverage. The company claims the model is better at finding real vulnerabilities in codebases and behaves more consistently on complex tasks, while maintaining low rates of misaligned behavior (e.g., deception) and reducing unnecessary refusals to benign requests.
Anthropic also reported using Claude Opus 4.6 to identify 500+ previously unknown high-severity flaws in widely used open-source libraries, including Ghostscript, OpenSC, and CGIF, and said the issues were validated to avoid hallucinations and have been patched by maintainers. The company described testing by its Frontier Red Team in a virtualized environment with access to tools like debuggers and fuzzers, aiming to measure the model’s out-of-the-box vulnerability discovery capability without specialized prompting or custom scaffolding, and using the model to help prioritize severe memory-corruption findings.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
7 events from the most recent confirmed update back to the earliest known activity.
Anthropic warned that the volume and speed of LLM-assisted vulnerability discovery could overwhelm existing validation, triage, disclosure, and patching workflows, potentially making standard 90-day disclosure timelines harder to sustain.
Alongside the model release, Anthropic announced new safeguards including six cyber-specific probes to monitor model activations and updated enforcement workflows that could intervene in real time to block malicious activity.
Anthropic and subsequent reporting highlighted patched example flaws including a stack buffer underflow in Ghostscript and buffer overflows in OpenSC and CGIF, illustrating the model's code-history and pattern-based reasoning.
Anthropic said it had started coordinated reporting and remediation with maintainers for the discovered vulnerabilities, and that some patches had already been merged into affected projects.
Anthropic reported that Claude Opus 4.6 found and validated more than 500 previously unknown high-severity vulnerabilities, primarily memory-corruption issues, with human review used to reduce hallucinations and false positives.
On 2026-02-05, Anthropic published its Claude Opus 4.6 release and said the model significantly improved AI-driven vulnerability discovery in open-source software using standard tools in a VM without custom harnesses.
Anthropic announced Glasswing, a new AI cybersecurity research initiative backed by the Linux Foundation and major technology companies, and introduced Claude Mythos, a security-focused model built on Claude Opus 4.6. Anthropic said Mythos outperformed Opus 4.6 on security benchmarks and found additional previously unknown vulnerabilities across software including Firefox, OpenBSD, FFmpeg, Linux, FreeBSD, and web applications, with disclosures being coordinated privately.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
12 references tracked. Mallory keeps watching after this page renders.
risky.biz
Open sourceembracethered.com
Open sourcegithub.com
Open sourceaikido.dev
Open sourcethehackernews.com
Open sourcesocket.dev
Open sourcered.anthropic.com
Open sourceopennet.me
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.