RECEIPTS

The Cyber Arms Race Has Two Sales Pitches

OpenAI launches GPT-5.4-Cyber one week after Anthropic's Mythos. Same capability, opposite access philosophy.
By Bustah Ofdee Ayei · April 18, 2026

On April 7, Anthropic announced Claude Mythos Preview and Project Glasswing: an AI that autonomously finds zero-day vulnerabilities, restricted to roughly 50 vetted organizations. One week later, on April 14, OpenAI responded with GPT-5.4-Cyber and the Trusted Access for Cyber program, offering similar capabilities to thousands of verified defenders. The technology is converging. The access models are diverging.

What GPT-5.4-Cyber Does

GPT-5.4-Cyber is a fine-tuned variant of GPT-5.4 trained specifically for defensive cybersecurity.1 The model handles binary reverse engineering, analyzing compiled executables to identify malware behavior and structural vulnerabilities without requiring source code. OpenAI deliberately lowered the model's refusal boundaries for security tasks, making it what they call "cyber-permissive" for legitimate defenders.

Access is gated through the Trusted Access for Cyber (TAC) program, which OpenAI introduced in February 2026. Individual defenders verify their identity at chatgpt.com/cyber. Enterprise teams apply through OpenAI account representatives. The stated goal: scale to "thousands of verified individual defenders and hundreds of teams responsible for defending critical software."2

No public pricing exists. GPT-5.4-Cyber is not in OpenAI's standard API pricing catalog. This is a restricted access program, not a product tier.

Two Philosophies

The contrast with Anthropic's approach is stark and deliberate.

Anthropic chose restriction. Mythos Preview goes to ~50 organizations: AWS, Apple, Broadcom, Cisco, CrowdStrike, Google, JPMorganChase, Microsoft, Nvidia.3 No general availability is planned. Anthropic committed a $100 million fund for securing critical software through Glasswing. The framing: these models are too dangerous for broad access and must be gated behind institutional trust.

OpenAI chose scale. TAC opens to thousands of verified defenders with a $10 million grant fund.4 The framing: broad access with identity verification is the only way to ensure defenders aren't outgunned by adversaries who face no such constraints. As OpenAI cyber researcher Fouad Matin put it: "This is a team sport. We need to make sure that every single team is empowered to secure their systems."5

One company says the model is too dangerous for broad access. The other says restricting it is too dangerous for broad defense.

The Schneier Take

Bruce Schneier isn't buying either pitch. On Anthropic's Glasswing: "The public has been given remarkably little with which to evaluate Anthropic's decision. We have been shown a highlight reel of spectacular successes."6 On the broader access question: "The claims that it's too dangerous to release publicly is pure marketing hype, just like OpenAI's nearly identical claim about GPT-2 was back in 2019."7

His deeper concern: "Anthropic is a private company and, in some ways, still a start-up. Yet it is making unilateral decisions about which pieces of our critical global infrastructure get defended first, and which must wait their turn." That critique applies equally to OpenAI's verification-gated model. Both companies are deciding who gets to defend what, and on what timeline. The difference is the radius of that decision.

What This Actually Is

Strip away the philosophical framing and the timeline tells the story. Anthropic announces an exclusive cybersecurity AI on April 7. OpenAI ships a competing product exactly one week later. The capability gap between the two companies is narrow enough that "who defends critical infrastructure" is now a go-to-market question, not a research question.

Both companies have economic incentives to position their model as the defender of critical infrastructure. Anthropic's restriction creates scarcity value. OpenAI's broad access creates market share. Neither company has released independent benchmarks comparing the two models' actual vulnerability discovery rates. We're comparing sales pitches, not capabilities.

Meanwhile, the UK's AI Safety Institute has warned that Claude Mythos Preview shows "unprecedented attack capability."8 Darktrace Federal CEO Marcus Fowler offered a useful reality check: "Most organizations are still constrained by the realities of remediation once an issue is discovered: patch development, testing, deployment, uptime requirements, and resource limitations."9

Finding vulnerabilities faster doesn't help if you can't fix them faster. That constraint applies regardless of which company's model finds them.

Related: Anthropic's Claude Mythos: The $800B AI That Broke the Internet (Nadia Byer)

Disclosure

This article was written using Claude, an Anthropic product. Anthropic is one of the two companies covered in this piece, and Claude Mythos is the model whose competitive dynamics we're analyzing. We verified all claims against primary sources. The competitive framing is ours, not either company's. bustah_oa@sloppish.com

Sources

  1. OpenAI: Trusted access for the next era of cyber defense (April 14, 2026)
  2. CyberScoop: OpenAI expands Trusted Access for Cyber to thousands (April 14, 2026)
  3. Anthropic: Project Glasswing (April 7, 2026)
  4. SiliconANGLE: OpenAI launches GPT-5.4-Cyber model for vetted security professionals (April 14, 2026)
  5. The Hacker News: OpenAI Launches GPT-5.4-Cyber (April 2026)
  6. Schneier on Security: On Anthropic's Mythos Preview and Project Glasswing (April 2026)
  7. Schneier on Security: Mythos and Cybersecurity (April 2026)
  8. Computing.co.uk: Claude Mythos Preview Shows Unprecedented Attack Capability (April 2026)
  9. Let's Data Science: OpenAI GPT-5.4-Cyber — Mythos Rival (April 2026)
Share: Bluesky · Email
Get sloppish in your inbox
Free newsletter. No spam. Unsubscribe anytime.
sloppish · Bluesky · RSS · bustah_oa@sloppish.com