[object Object]“why won’t the AI haters admit claude mythos is good?” when it turns out the exploits it found are utterly overblown (ie the firefox exploit that only works on a custom build with the sandbox disabled amongst many other non-exploitable bugs), were found at extreme expense, and required a ton of human staff to verify (just like with existing non-LLM techniques), why won’t you admit this is a grift? why won’t you admit you’ve been falling for the same grift since 2019?
Adam Shostack 
@zzt Do you have a link to something that explains the details behind "the exploits were overblown"? I looked at your thread, didn't see it.
@adamshostack yeh https://mas.to/@zzt/116376387689039648 details are trickling out about several of the others being in a similar vein, or being practically unexploitable, but details are scattered since this grift is structured such that anthropic has a high level of control over how information is shared
[object Object] (@[email protected])
Attached: 1 image some asshole doing free marketing for anthropic decided my post was worth screenshotting as an example of what’s wrong with the AI critics but they utterly failed to engage with any of the points I made, as if pushing back on this obvious shit at all is the problem anyway here’s a citation for the Firefox thing because no that wasn’t just me talking, the grift really is that fucking obvious
@zzt Thanks, and where is that post/paper with section 3.3.3 shown?
@adamshostack no clue but here’s an anthropic blog post that says exactly the same: https://red.anthropic.com/2026/exploit/
> Specifically, Claude needed to exploit a stripped-down version of the js shell (a standalone utility that lets developers use Firefox’s JavaScript engine without the browser) that resembles an unsandboxed content process in the browser, and a task verifier to determine whether the exploit worked.
@zzt apparently I picked the wrong text to search on :)
Bruce Simpson, Ph.D.@adamshostack @zzt It's Metasploit 2026... pay no need to the misAnthropic marketing BS and the timing is wayyy too convenient after "undercover.ts"
@adamshostack @zzt Also the Gary Marcus post on this just dropped: https://garymarcus.substack.com/p/three-reasons-to-think-that-the-claude
@bms48 @adamshostack pivot (from @davidgerard) too: https://circumstances.run/@davidgerard/116376955586380741
David Gerard (@[email protected])
Attached: 1 image Claude Mythos: the AI hacking model too good to release! Allegedly Your expensive static checker https://www.youtube.com/watch?v=-c1DC-gNizQ&list=UU9rJrMVgcXTfa8xuMnbhAEA - video https://pivottoai.libsyn.com/20260409-claude-mythos-the-ai-hacking-model-too-good-to-release-allegedly - podcast time: 7 min 07 sec
David Gerard
Claude Mythos is Delusional
@davidgerard @zzt @adamshostack Let Gary Marcus bring the kryptonite too! https://garymarcus.substack.com/p/three-reasons-to-think-that-the-claude