logoalt Hacker News

altmanaltmanyesterday at 3:45 AM3 repliesview on HN

Its very hard to understand what you're saying with the comment - like you have 10+ years of experience and you verify each bug because you know Mythos can provide fake positives. But other teams (which also should have people equivalent to your skill and experience level) suck at it so much that CVP level workers are having to spend time on their fake reports. Then you say Anthropic should stop theater. Then you say the cve count is real.

It genuinely felt like the aladin scene in The Dictator reading this comment.


Replies

guessmynameyesterday at 5:11 AM

I didn’t claim to have 10+ YoE; I said that most of the people in Project Glasswing are security researchers with 10+ YoE (avg).

> Its very hard to understand what you're saying with the comment

Yes, fair enough. I’m simply trying to shed some light on what goes on behind the scenes without disclosing too much information to avoid breaching the NDA(s) that all Project Glasswing users have signed. There’s a lot of speculation about the usefulness of Mythos as a security tool, so much so that even the US government got involved. Honestly, it’s so absurd that I can’t even express it in words. I thought that sharing a bit about how frustrating it is to work within this project, trying to secure software that literally millions of people around the planet use on a daily basis, while virtually everyone outside of it criticizes every move you make, would be helpful.

Many people I work with recognize the power of Mythos, just like any other model with a similar number of parameters, but most of the people I interact with agree that it’s not the ultimate panacea. I believe that it’s just vocal minorities scaring everyone into thinking that the model is some kind of cybernetic weapon.

show 1 reply
baqyesterday at 11:20 AM

I had no trouble understanding that the quality of operators is as important as the quality of the model and the harness. new operators received access to the tool and didn't follow the operational guidelines. happens everywhere, all the time, with predictable consequences; meanwhile experienced operators who follow the manuals get good results. no idea why you are surprised at anything.

nullbioyesterday at 11:45 AM

"Please save us from ourselves daddy Anthropic - how will we survive without you and your incredible safety standards.

Wait, you guys had a RCE in Claude Code for nearly a year and didn't even release a disclosure about it and secretly patched it and swept it under the rug?

Well... It's okay, I still trust you."