Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!
Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.
Hope you enjoy the instance!
Rules
Follow the wormhole through a path of communities !webdev@programming.dev
Weird headline given his more recent writing, Schneier on his blog makes it pretty clear that both things can be true: Anthropic has an excellent marketing team, and security is soon going to be an issue in new ways.
He also worked on a 'you should get your security team functional ASAP' paper that just dropped, which is riddled with AI hype, here
I can't see that. Yes, the press is hyping Mythos in a complete brainless way, without understanding what the Mythos paper says.
But just following the statements made by Anthropic that is a clear and factual representation.
I actually recommend that people read the paper itself. And not just die cherry picked parts of the press.
Also, I have seen 3 reported 0days found by Mythos in projects I (or my employer) contributes.
That is not hype, those found issues are fact.
If You made it to here in the comment, a little bonus. Let us debunk some press statements
Press: Mythos cheated, lied and is dangerous.
Fact: earlier versions did this. Anthropic describes the preview version as the most aligned model they have ever created, and cheating occured in less then 1% of cases
Press: Mythos is a security nightmare
Fact: in the wrong hands, it could be.
Press: Mythos exploited Firefox!
Fact: yes and no. It founds zero day's in Firefox, but the extremely high success rate where an instrumented JS environment, and not the full browser
Duh..