Security Conversations
215
Security Conversations
04.10.2026 | 2:34''36'
The Claude Mythos, Project Glasswing Shockwave
About the episode
(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.)
Three Buddy Problem – Episode 93: We discuss Anthropic's release of Claude Mythos Preview (an AI model so capable and dangerous they won't release it publicly) and debate the looming patching crisis, bug bounty extinction, possible US government nationalization of frontier labs, and why the NSA might not be thrilled about all this bug-fixing.
Plus, North Korea's six-month Drift Protocol con job, APT28's retro DNS hijacking campaign, and Microsoft's driver signing mess hitting WireGuard and VeraCrypt.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.
00:00 — Opening banter
01:36 — Anthropic Mythos Preview + Project Glasswing
06:17 — USG reaction + Wall Street emergency meeting
10:54 — Mythos capabilities vs hype (technical reality check)
13:44 — PR stunt? Skepticism of Anthropic narrative
20:42 — The patching crisis + “defender advantage”
27:41 — Bug bounty model under threat from AI
33:37 — Mythos practical workflows
45:09 — Geopolitics, NSA angle, and nationalization discussion
01:40:18 — Fortinet zero-day + ongoing failures
01:42:39 — Drift Protocol heist ($285M) + long-term social engineering
01:44:07 — Revisiting XZ Utils / Jia Tan attribution
01:54:07 — Crypto security gaps + need for real CTI in blockchain
02:04:22 — APT28 DNS hijacking + router compromise campaign
02:18:57 — Microsoft driver signing meltdown + ecosystem impact
Links:
- Transcript
- TLPBLACK
- Claude Mythos Preview
- Accidental data leak reveals existence of Anthropic Mythos
- Project Glasswing
- System Card: Claude Mythos Preview
- Axios: OpenAI plans new product for cybersecurity use
- The $285M Drift Protocol Heist Was ‘6 Months in the Making’
- Drift Protocol – Incident Report
- US Treasury to share threat-intel with crypto companies
- Fortinet customers confront actively exploited zero-day
- Fortinet advisory: CVE-2026-35616 (exploited in the wild)
- SOHO router compromise leads to DNS hijacking
- APT28 exploit routers to enable DNS hijacking operations
- DOJ Conducts Court-Authorized Disruption of DNS Hijacking Network Controlled by a Russian Military
- Lumen on ‘Frost Armada’ Forest Blizzard DNS Hijacking
- WireGuard (Account Suspended)
- OSR on Microsoft Driver Signing Lockout
- Microsoft: Account Verification for Windows Hardware Program
- US Warns of Iran-Linked Cyber Hacks on Water, Energy Systems
- CISA bulletin: Iranian Hackers Exploiting PLCs Across US Critical Infrastructure
- Watch S4: The Bob Lazar Story
- YouTube: Dan Guido at [un]prompted