Onpode
Cover art for Anthropic's Mythos cracked classified NSA systems in hours, forcing a rushed government export ban

Anthropic's Mythos cracked classified NSA systems in hours, forcing a rushed government export ban

June 22, 2026 · 5 min

Jonathan Ingles & Maya Chen

Anthropic's Mythos AI penetrated nearly all classified U.S. systems during an authorized NSA red-team exercise in hours — not a breach, but a controlled capability test. The Commerce Department issued export controls restricting Mythos and Fable 5 to U.S. citizens only, with just ninety minutes' notice to Anthropic, setting the first-ever export ban on a specific AI model.

In mid-June 2026, Anthropic's frontier AI model Mythos became the center of a major U.S. national security controversy. During an authorized red-team exercise on June 11, 2026, Mythos was tested against NSA and U.S. Cyber Command networks.

0:005:25
Make your own on Onpode

Describe any topic. Hear it in minutes.

More Onpode episodes on Technology

About this episode

In mid-June 2026, Anthropic's frontier AI model Mythos became the center of a major U.S. national security controversy. During an authorized red-team exercise on June 11, 2026, Mythos was tested against NSA and U.S. Cyber Command networks.

Frequently asked

Did Anthropic's Mythos AI really hack NSA classified systems?

Anthropic's Mythos AI penetrated nearly all NSA classified systems during an authorized red-team exercise on June 11 — not an unauthorized hack. The NSA provided starting conditions for a controlled capability demonstration. Senator Mark Warner described it as a breach, but security experts called that framing a misread of a controlled test.

Why did the U.S. government ban Anthropic's Mythos AI?

The Commerce Department restricted Anthropic's Mythos and Fable 5 models to U.S. citizens only after an NSA red-team exercise on June 11 showed Mythos could penetrate nearly all classified systems in hours. It marked the first time export controls had ever been applied to a specific AI model. Anthropic received only ninety minutes' notice.

How did the Mythos export ban affect Five Eyes intelligence partners?

The U.S. Commerce Department's export ban on Anthropic's Mythos cut off allied intelligence researchers — including GCHQ staff — without advance warning on June 12. Five Eyes partners received no prior coordination; the U.S. acted unilaterally and issued a joint Five Eyes cybersecurity statement only afterward, according to reporting cited in the episode.

Was Anthropic responsible for the government panic over Mythos?

Anthropic had actively marketed Mythos's offensive cybersecurity capabilities to the U.S. government before the export ban. The NSA red-team exercise on June 11 that alarmed officials was partly enabled by Anthropic's own pitch. Simultaneously, U.S. Cyber Command was preparing to deploy Mythos offensively — raising questions about whether the ban was about danger or control.

What precedent does the Mythos export ban set for AI regulation?

The Mythos and Fable 5 export controls are the first ever applied to specific AI models, establishing that a government can declare an AI capability dangerous and simultaneously reserve it for domestic use. Critics argue the precedent is not 'ban the dangerous model' but 'declare it dangerous, keep it for yourself' — giving every government the same instruction manual.

Grounded in 12 sources
AI models that can take down governments and business months away, rare Five Eyes statement warns - The Guardian · theguardian.com
How Anthropic may have talked itself into an AI export ban - Ars Technica · arstechnica.com
Amazon CEO Alerts Government, Restricts Anthropic Fable 5 Access - Let's Data Science · letsdatascience.com
NSA said to be readying Anthropic's Mythos for use in cyber ... · techcrunch.com
OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos - WIRED · wired.com
NSA director: 'Mythos "broke into almost all of our classified systems in hours" | Hacker News · news.ycombinator.com
Intel agencies: Frontier AI models will reshape cybersecurity faster than expected - CyberScoop · cyberscoop.com
Anthropic's Mythos AI Model Reportedly Breached NSA Classified Systems in Hours - Cyber Security News · cybersecuritynews.com
"Must act now" to counter AI-borne cyber attacks, 'Five Eyes' says - iTnews · itnews.com.au
US Export Order Forces Anthropic to Disable Fable 5 and Mythos 5 | Mallory · mallory.ai
Anthropic's Mythos AI reportedly cracked NSA classified systems in hours, that would explain the ban | TechSpot · techspot.com
NSA Chief Says Mythos Breached ‘Almost All’ Classified Systems In Hours | Times Now · timesnownews.com
Read transcript

Jonathan Ingles: The Economist runs a story. Senator Mark Warner says Mythos broke into almost all of the NSA's classified systems. Not in weeks — in hours. General Joshua Rudd briefed the Senate Intelligence Committee. By the next morning, Anthropic had ninety minutes' notice before a Commerce Department order killed global access. The story writes itself — except none of the actual words in that story mean what people think they mean.

Maya Chen: What do you mean?

Jonathan Ingles: Look — 'broke in' implies intrusion. What actually happened on June 11 was an authorized red-team exercise. The NSA gave Mythos starting conditions. That's not a breach, that's a controlled capability demonstration. Warner called it a breach. Huge difference.

Maya Chen: Okay, but — wait, actually, I'm not sure that distinction lands the way you want it to. If you hand someone a set of skeleton keys and they open every door in the building in three hours... the keys being yours doesn't make the result less terrifying.

Jonathan Ingles: The result isn't what drove the decision. Ninety minutes. The Trump administration — through Commerce — restricted Mythos and Fable 5 to U.S. citizens only. First time export controls have ever been applied to a specific AI model. That doesn't happen in ninety minutes because you're scared. That happens because you already knew what you wanted to do.

Maya Chen: Hm. So the fear was real, but it was — sort of, convenient?

Maya Chen: Picture a GCHQ researcher — UK intelligence, a Five Eyes partner — mid-project, Tuesday morning, June 12. Mythos just... vanishes. No explanation before the fact. Ninety minutes notice wasn't even for them, it was barely for Anthropic. That's not coordination, that's the U.S. acting alone and stapling the Five Eyes name to it afterward.

Jonathan Ingles: Right, but here's what makes that worse — U.S. Cyber Command, General Rudd's own unit, was simultaneously preparing to deploy Mythos offensively. You don't ban a capability you're actively acquiring for yourself unless the real goal is controlling who else gets it.

Maya Chen: Wait — and Anthropic had been actively marketing Mythos's cyber capabilities to government. So the panic that justified the ban was partly built on Anthropic's own pitch deck.

Jonathan Ingles: That's — yeah. That's the circular logic nobody wants to name.

Maya Chen: And Anthropic's own foreign-national employees — people on their payroll — woke up locked out of their company's model. I mean, the export control didn't just hit allied governments, it cut through the company's own staff. What does that actually do to the research? To the work mid-stream?

Jonathan Ingles: It kills it. And Five Eyes issued a joint warning that models capable of significant cybersecurity damage are months away — then watched the U.S. act unilaterally before the ink was dry. That's not an alliance. That's a branding exercise.

Jonathan Ingles: And then OpenAI announces 'Patch the Planet' — GPT-5.5-Cyber, Codex Security as an app plug-in — right in the middle of the Mythos controversy. That's not coincidence. That's an industry watching a regulatory moment open up and sprinting through the door.

Maya Chen: Hold on.

Jonathan Ingles: The Economist broke the Rudd-Warner briefing. That story goes viral before any technical scrutiny can catch up. Warner never corrected the 'breach' language — not once, even after security experts publicly said it was a misread of a controlled test. That's not confusion. That's a choice.

Maya Chen: Yeah, I — okay, I'll grant the framing was sloppy, maybe cynical. But what if that's actually the wrong argument to be winning? Because even the skeptical security experts, the ones calling the breach language technically unsound, they're still saying AI is compressing offensive cyber timelines faster than anyone projected. So we're... we're debating the wrapper while the thing inside the box is accelerating.

Jonathan Ingles: The institutions can be clumsy and the threat can be real — those aren't mutually exclusive.

Maya Chen: Exactly. Dismissing Five Eyes as theater — what if that's the riskier mistake? Like, what if the alarm is real and the process is just... broken?

Maya Chen: And that's — I mean, if the U.S. can't decide whether Mythos is a weapon to acquire or a threat to suppress, and Five Eyes 'coordination' means getting a statement after the Commerce Department has already acted... what exactly are we coordinating? Like, what is the actual mechanism?

Jonathan Ingles: There isn't one. That's the answer. The Five Eyes warning said models capable of significant damage are months away — then watched the NSA prep Mythos for offensive use on the same timeline. You can't build a governance framework on a foundation where the lead partner is also the most motivated defector.

Maya Chen: No, but — wait, that's not quite — the GCHQ researcher locked out on June 12 didn't defect from anything. They just got cut off. And now every other government has watched the U.S. apply the first-ever export control on a specific AI model. Fable 5, Mythos 5. That's the precedent.

Jonathan Ingles: Exactly. And the precedent isn't 'ban the dangerous model.' The precedent is: declare it dangerous, keep it for yourself. Every government just got the instruction manual.

Anthropic's Mythos cracked classified NSA systems in hours, forcing a rushed government export ban · Onpode