Anthropic and OpenAI now generate 89% of revenue among 34 leading AI startups tracked by The Information. Their lead is raising doubts about how much value will be left for app makers built on their models. More insights:

Anthropic: We have trained a new model that is incredibly good at finding security exploits in production software Public: Wow! We better ban data center construction right away. We wouldn’t want the US to be ahead of China in training these types of models for much longer.

Anthropic admitted they built an AI so capable they were scared to release it and the number that explains why is 250. Anthropic's CFO Krishna Rao described in this clip what happened when they ran Mythos against an open source codebase that a previous frontier model had already analyzed. The prior model found 22 security vulnerabilities, Mythos found 250. In the same codebase, that the previous model had already reviewed and flagged as relatively clean. That number, more than 11 times as many vulnerabilities discovered is not just a benchmark improvement, it is a signal that there is an entire layer of software infrastructure that humanity has been operating under the assumption was secure and that assumption may no longer hold. The UK AI Security Institute independently evaluated Mythos Preview and confirmed what the internal numbers suggested. On expert level capture the flag challenges that no model could complete before April 2025, Mythos succeeded 73% of the time and it became the first model ever to complete a complex end-to-end attack range from start to finish, autonomously, without human guidance. The World Economic Forum called this a new security-driven era for AI, the Governor of the Bank of England publicly warned that Anthropic may have found a way to unlock the entire cyber-risk landscape, and the European Central Bank began quietly contacting financial institutions to assess their security posture. The response from Anthropic is what makes this story genuinely important. Rather than shelving the model or publishing it as a standard API release, Rao described a phased approach restricting access to a controlled group, focusing specifically on how the cyber capabilities can be used defensively rather than offensively and treating that framework as a template for how to release powerful but dangerous models in the future. The broader context makes that framing even more significant. AI generated code is already creating ten times more security vulnerabilities than human-written code, 63% of organizations reported experiencing an AI driven cyberattack in the past 12 months, and traditional signature-based security tools were built for a threat model that no longer describes the attack surface companies are defending against. Mythos represents a genuine leap in what autonomous security reasoning can do and it cuts both ways. The model that can find 250 vulnerabilities in a codebase a prior model rated as mostly clean is also, in the wrong hands, the model that can exploit those 250 vulnerabilities before a human defender has even finished reading the report. Anthropic's phased release strategy is not just a legal or PR decision, it is the most honest signal yet from a frontier lab that safety governance and capability development can no longer be treated as separate workstreams. The question is not whether this technology gets deployed, it is whether the institutions using it defensively stay ahead of the ones who will eventually use it offensively and whether the labs building it can keep those two timelines from inverting.

Anthropic is voiding secondary trades. @kaiynne traces the anatomy from WhatsApp scam groups all the way to purely synthetic on-chain perp markets — with @tayvano_ @LucaNetz 🪨 Rocks with Anthropic written on them and the SPV daisy chain 🧱 Why Forge is caught in the crossfire ⚙️ The bucket shop model and why synthetic perps can't be stopped

Anthropic is voiding secondary trades. @kaiynne says it won't matter — synthetic perp markets will price every in-demand private company continuously, no matter what founders do about it. With @tayvano @LucaNetz: 🪨 SPV daisy chains and “rocks with Anthropic written on them” 🦠 Tay on malware being written using your local AI APIs 🐂 Why Luca is bullish on Circle stock after the ARC presale