Source: MIT Technology ReviewMay 17, 2026

Claude Mythos Cracks Apple M5 Memory Protection in Five Days

View original source →

Anthropic disclosed on May 11 that Claude Mythos — an advanced internal research variant of Claude — successfully developed a proof-of-concept exploit for Apple's M5 chip Memory Protection Extensions in five days, a result that Anthropic is using to argue for accelerated AI safety research investment across the industry.

Key Points:

• Claude Mythos was given access to M5 chip architecture documentation and a sandboxed test environment. It independently identified a novel attack vector in the Memory Protection implementation that Apple had not disclosed publicly.

• Anthropic notified Apple immediately upon confirming the exploit and collaborated on a patch before disclosure, following responsible disclosure norms.

• The result is being cited by Anthropic as evidence that frontier AI models are approaching the capability threshold where autonomous vulnerability research at expert level is no longer theoretical.

An AI system cracking a flagship hardware security feature in five days — without human direction of the specific approach — represents a genuine capability milestone. It validates concerns about dual-use AI research that have previously been theoretical.

Anthropic's decision to disclose this publicly, and use it as an argument for more safety investment rather than less AI capability development, reflects a calculated transparency strategy. It positions safety research as the response to, not the brake on, capability advances.

For security and hardware teams, this disclosure accelerates the timeline for considering AI-assisted vulnerability research in your threat model. The assumption that hardware security features are immune to AI-assisted analysis is no longer valid. For AI governance leaders, the responsible disclosure process Anthropic followed — notify, patch, then disclose — is a model for how AI labs should handle capability discoveries with dual-use implications.

Why It Matters: This capability milestone validates dual-use AI concerns that were previously theoretical. AI systems can now conduct autonomous expert-level vulnerability research, accelerating timelines for when this must be included in enterprise threat models.