A coalition of high-profile cybersecurity leaders, including researchers and CEOs, is pushing back against the Trump administration’s decision of restricting the access to Anthropic’s newest models Fable 5 and Mythos 5. In a letter sent to US Commerce Secretary Howard Lutnick, these executives from technology firms and cybersecurity experts are calling for a reversal of orders.
Why the security researchers is concerned
The group argues that the current limitations are counterproductive, asserting that the government’s move hurts cyber defenders more than malicious hackers. As per a report in Axios, the central argument of the letter, led by former Facebook chief security officer Alex Stamos, is that the government is essentially disarming the “good guys”. Cybersecurity defenders rely on advanced AI to detect and prevent complex hacking attempts. By restricting the access to Anthropic’s most powerful tools, the experts claim the administration is hindering the people responsible for protecting American digital infrastructure.Furthermore, the coalition argues that the government is trying to solve a problem that isn’t unique to Anthropic, pointing out that the concerns originally raised by Amazon researchers regarding potential AI risks are actually broad issues that exist across all leading AI models, not just those from Anthropic.
Read the letter sent by security CEOs and researchers to Howard Lutnick
Dear Secretary Lutnick and National Cyber Director Cairncross,We, the undersigned executives and technical leaders from across the United States, write to you to ask you to lift the export control directives on Anthropic’s Fable and Mythos large language models and commit to an open, scientific and transparent process of handling AI risk assessments in the future.First, we would like to state that we believe that:AI is having significant impacts on cybersecurity, including by greatly reducing the difficulty of finding flaws in software and writing exploits for those flaws.Anthropic’s Mythos-class models are quite good at finding flaws and weaponizing exploits.However, they are not uniquely good at these tasks, and many of the undersigned individuals regularly use other foundation and open-source models for security audits and red-teaming every day.Anthropic has built multiple protections into the Fable model to prevent its use for cyber offensive uses. These protections were so aggressive as to be the source of humor in the cyber community on launch day.It is essential to provide AI to coders and security teams so they can find and fix flaws in their own newly-written as well as decades of legacy code faster than our adversaries.The Chinese open-weight models are only months behind the best American models, and those are the models we know about. It seems likely that the PRC government has access to private capabilities beyond what has been published.To pull the best capabilities away from defenders without a good reason when our adversaries are rapidly advancing is dangerous.It is our understanding that underlying model capabilities in the original research that triggered this action:Were focused on determining whether a human-prompted section of code was insecure. This is a necessary capability in any model that is intended to write secure code and should not be considered an offensive capability.Can be replicated on GPT-5.5, Opus, Sonnet and even Chinese models like Kimi 2.7. The justification for this unprecedented action was that Fable provides a unique “uplift” of capabilities beyond other AI models, but AI has been finding bugs and generating working exploits at superhuman levels since last year.Anthropic is addressing the research. As security professionals, we recognize that our work does not lead to a simple end-state where a system is fully safe, and the purpose of research like this is to enable continuous improvement, not to ban the technology.As a result, this action has taken the best models away from defenders, created market uncertainty, and risked America’s AI leadership without any real risk to justify it.Not all of us agree that AI regulation is the right way forward. But if this Administration’s laudable goal of securing our nation’s critical infrastructure is going to include models being regulated, then the regulations should be:Grounded in scientific evaluations developed with input from industry and academia;Created through a democratic rule-making process;Enforced transparently and fairly with appropriate time given to remediate; andUsed only to the minimal extent necessary to ensure the safety of the American public.Thank you for your consideration and partnership in helping us maintain America’s lead in technology while protecting critical software and systems.
