Anthropic Launches Public Version of Claude Fable 5 with Limited Cybersecurity Features

Anthropic just gave the public its first taste of Mythos-class AI, and it arrives with a critical asterisk: the advanced cybersecurity functions that make its unrestricted siblings so powerful have been intentionally limited or removed entirely.

The full Mythos models can autonomously discover and exploit zero-day vulnerabilities — they can find security holes that nobody knows about and break through them without human guidance. Handing that capability to everyone with an API key would be, to put it mildly, inadvisable.

Claude Mythos Preview dropped back in April 2026, accessible only to a small group of vetted organizations specifically because of its autonomous zero-day discovery capabilities. That model was essentially a cybersecurity weapon that could probe major operating systems and browsers for exploitable weaknesses.

Now there are two new entrants. Claude Fable 5 is the public-facing product, priced at $10 per million input tokens and $50 per million output tokens. It outperforms Claude Opus on benchmarks, making it the strongest model Anthropic offers to general users. But when queries venture into risky cybersecurity territory, Fable 5 redirects them to older, less capable models like Opus.

Then there’s Claude Mythos 5, the full-strength version. This one is restricted to trusted partners through something called Project Glasswing, which lifts the safety guardrails in high-risk domains. The partner list reads like a who’s who of Big Tech: Microsoft, Nvidia, Cisco, Google Cloud, and AWS. All of them are using the model defensively, bolstering their own cybersecurity infrastructure.

Anthropic’s own assessment is blunt. No entity currently has sufficient safeguards for a full public release of Mythos-level models.

DeFi protocols are, by design, permissionless and often immutable once deployed. A traditional company can patch a vulnerability overnight. A smart contract sitting on a blockchain doesn’t have that luxury. If a Mythos-class model identifies an exploitable flaw in a DeFi protocol’s infrastructure, the window between discovery and exploitation could shrink to something approaching zero.

The crypto community is already beginning to reassess its security priorities in response to these capabilities. The traditional focus on smart contract audits, while still important, may no longer be sufficient. Infrastructure-level concerns like key management systems, oracle networks, and bridge architectures now demand the same level of scrutiny.

Consider oracle infrastructure specifically. Oracles feed external data to smart contracts, and they represent a single point of failure that an autonomous AI could target with surgical precision. A compromised oracle doesn’t just affect one protocol. It can cascade across every DeFi application that relies on it.

The same logic applies to key management. If an AI can identify vulnerabilities in how private keys are stored, generated, or transmitted, the consequences for custodial and semi-custodial crypto services could be catastrophic.

The Project Glasswing partnership structure is worth watching closely. Microsoft, Nvidia, Cisco, Google Cloud, and AWS aren’t just testing the technology. They’re integrating Mythos-class capabilities into their defensive security stacks. Any improvements or innovations that emerge from these collaborations will likely trickle down into the products and services that crypto infrastructure providers depend on.

Fable 5’s guardrails redirect dangerous queries to less capable models. But Mythos 5 exists without those guardrails, accessible to a growing list of corporate partners.