| ▲ | maebert 3 hours ago |
| The whole artificial scarcity Anthropic created around Mythos / Glasswing is quite brilliant to be honest (I’m Not saying ethical, just brilliant). The commercial gains are one side of course. But consider this: Gets labelled supply chain risk by the pentagon. Hypes up what they claim to be the most advanced hacking tool on the planet. This puts the US government into a loose / loose position. Either deny the NSA access to it, or be called out on their bluff. |
|
| ▲ | latexr 2 hours ago | parent | next [-] |
| > The whole artificial scarcity Anthropic created around Mythos / Glasswing is quite brilliant to be honest Isn’t that just the same strategy OpenAI has used over and over? Sam Altman is always “OMG, the new version of ChatGPT is so scary and dangerous”, but then releases it anyway (tells you a lot about his values—or lack thereof) and it’s more of the same. Pretty sure Aesop had a fable about that. “The CEO who cried ‘what we’ve made is too dangerous’”, or something. https://en.wikipedia.org/wiki/The_Boy_Who_Cried_Wolf |
| |
| ▲ | __MatrixMan__ 35 minutes ago | parent | next [-] | | They way they've published hashes of the bugs it has found so that once those bugs are fixed they can responsibly disclose them while also proving that they weren't lying... that displays a willingness to dabble in evidence which is far beyond anything OpenAI has done to support their claims. | |
| ▲ | xiphias2 an hour ago | parent | prev | next [-] | | It was from GPT-2 and Dario was part of the developers of that model while he was working in OpenAI, not Sam Altman, it's his playbook | | |
| ▲ | latexr an hour ago | parent | next [-] | | > It was from GPT-2 Prior to the released of GPT-5, Sam said he was scared of it and compared it to the Manhattan Project. | | | |
| ▲ | foobar_______ an hour ago | parent | prev | next [-] | | Thank you. People are currently getting a hard-on claiming Anthropic are the 'good guys' and don't stop to actually look around and see what is going on and how both companies got here. | |
| ▲ | kordlessagain an hour ago | parent | prev | next [-] | | This is pretty much correct, but Mustafa Suleyman has probably been doing it longer. | |
| ▲ | Hamuko an hour ago | parent | prev [-] | | Not just part of the developers, but rather "led the development of large language models like GPT-2 and GPT-3" as per his website. https://darioamodei.com/ |
| |
| ▲ | Filligree 2 hours ago | parent | prev [-] | | Anthropic has not in fact released it, and it does in fact appear to be that dangerous, judging by the flood of vulnerability reports seen by e.g. Daniel Stenberg. Certainly it’s a strategy OpenAI has used before, and when they did so it was a lie. Altman’s dishonesty does not mean it can never be true, however. | | |
| ▲ | mccr8 an hour ago | parent | next [-] | | The flood of reports that open source projects like curl, Linux and Chromium are getting are presumably due to public models like Open 4.6 that released earlier this year, and not models with limited availability. | |
| ▲ | amarcheschi 2 hours ago | parent | prev | next [-] | | How many months till they release a better model than mythos to general audience? Gpt 2 wasn't released fully because OpenAI deemed it too dangerous, rings a bell?
https://openai.com/index/better-language-models/#sample1 | | |
| ▲ | Hizonner an hour ago | parent [-] | | A few months of restricting access to people they think will actually fix problems is a big deal. Obviously only an idiot would think it could or should be kept under wraps forever. |
| |
| ▲ | an hour ago | parent | prev | next [-] | | [deleted] | |
| ▲ | kordlessagain an hour ago | parent | prev | next [-] | | Those vulnerabilities were found by open models as well. | | |
| ▲ | abustamam an hour ago | parent | next [-] | | Partly true. I think the consensus was it wasn't comparable because Mythos swept the entire codebase and found the vulnerabilities, whereas the open models were told where to look for said vulnerabilities. https://news.ycombinator.com/item?id=47732337 | |
| ▲ | mccr8 an hour ago | parent | prev [-] | | Not really. The models were pointed specifically at the location of the vulnerability and given some extra guidance. That's an easier problem than simply being pointed at the entire code base. |
| |
| ▲ | embedding-shape 2 hours ago | parent | prev [-] | | > judging by the flood of vulnerability reports seen by e.g. Daniel Stenberg Maybe I've missed anything, but what Stenberg been complaining about so far been the wave of sloppy reports, seemingly reported by/mainly by AIs. Has that ratio somehow changed recently to mainly be good reports with real vulnerabilities? | | |
|
|
|
| ▲ | daemonologist 3 hours ago | parent | prev | next [-] |
| > This puts the US government into a loose / loose position. You might even call it... a tight spot |
| |
| ▲ | garbawarb 3 hours ago | parent | next [-] | | Side note, how did the word "lose" become "loose"? I've seen this so many times on HN. | | |
| ▲ | clark_dent 2 hours ago | parent | next [-] | | It didn't, but the advent of spellcheck and autocorrect has made everyone completely give up on proper grammar or word selection as long as no squiggly line appears. | | |
| ▲ | latexr 2 hours ago | parent | next [-] | | Maybe that’s part of it, but I’ve also noticed autocorrect on my devices often correcting incorrectly. As in, I type the word correctly and it decides “oh, surely you meant this other similarly spelled word” and changes it. Sometimes I don’t notice until after sending the message. | | |
| ▲ | abustamam 36 minutes ago | parent [-] | | I use MS SwiftKey on my android phone and it will often autocorrect my correctly spelled, correctly used, words, to words that probably don't exist in any language (recently it corrected "blow" to "blpw"). I have French installed on my keyboard as well so sometimes it will randomly correct English words to French words (inconsistently, but at least they're words), but blpw is not a word in either of those languages. Unfortunately, I think me typing blpw three times has officially added it to my dictionary :) |
| |
| ▲ | Zambyte an hour ago | parent | prev | next [-] | | That defiantly has something to do with it | |
| ▲ | abustamam 39 minutes ago | parent | prev | next [-] | | Having grown up around immigrants and other folks who learned English as a second language, I always attributed "loose" for being a signal that perhaps English isn't the writer's first language. I think what you say is partly true too, but it's not a new phenomenon. Some examples - awful used to mean "awe-inspiring" https://en.wiktionary.org/wiki/awful - you used to be the plural/formal second person pronoun with thou being the informal form https://en.wikipedia.org/wiki/You - prior to the printing press English didn't have any standardized spelling at all https://www.dictionary.com/articles/printing-press-frozen-sp... Language evolves. The English we learned in grammar school is likely not going to be the same English our kids or grandkids learn. At the end of the day, written communication has a single purpose — to communicate. If I can understand what the author is trying to say, then the author achieved their goal. That being said, I wish my mom did use spell check or autocorrect because her messages often require a degree in linguistics to decipher, but because of typos, not spelling. Maybe she'll influence the next evolution in typed communication :) Edit - formatting | |
| ▲ | ratg13 an hour ago | parent | prev [-] | | Could also be non-native speakers .. Even as a former grammar nazi, now that English isn't my daily driver language I find myself making basic mistakes .. (two, too, to / its, it's / etc.) |
| |
| ▲ | veidr 9 minutes ago | parent | prev | next [-] | | Exactly the same way that the `cancelled` of my youth became `canceled`. By being misspelled so often that the misspelling won. In this case, it's not clear who wins yet — "lose" may loose, or mount a comeback, resulting in "loose" being the one to lose. | |
| ▲ | Aerroon 2 hours ago | parent | prev | next [-] | | Because your pronounce them backwards. "Loose" is a short word that ends sharply, but "lose" is a long word that slowly peters out. They should be the other way around imo. | | |
| ▲ | theowaway213456 2 hours ago | parent | next [-] | | If we're allowed to make modifications here then it should really be lose => looze and loose => luce | | | |
| ▲ | dtj1123 2 hours ago | parent | prev | next [-] | | This was also the way I felt before I was introduced to "the magic e" (spoiler: it still doesn't make any sense) https://www.academysimple.com/magic-e-words/ | | |
| ▲ | sd9 an hour ago | parent [-] | | Wow, "magic e" just transported me back to primary school. And I had a little heart flutter fearing that I wouldn't be able to remember/explain it today. |
| |
| ▲ | garbawarb 2 hours ago | parent | prev | next [-] | | Loose rhymes with moose, noose, caboose... | |
| ▲ | evanjrowley 2 hours ago | parent | prev | next [-] | | Now that you frame it that way, I'm surprised "lose" didn't evolve to be pronounced like "Lowe's" | | |
| ▲ | abustamam 33 minutes ago | parent [-] | | I hate discussions like these because then I start reading words in weird ways and then I look at words as a random jumble of letters that don't even seem like words anymore. Is that just me? :) |
| |
| ▲ | parineum an hour ago | parent | prev [-] | | Since English has a glut of loaner words, I'd assume the two words just originate from different languages. |
| |
| ▲ | hosel 19 minutes ago | parent | prev | next [-] | | I try to let it go, but this is my pet peeve. | |
| ▲ | JackFr 2 hours ago | parent | prev | next [-] | | I always assume not everyone is an English speaker and let it go. | | |
| ▲ | maebert 2 hours ago | parent [-] | | Ha. Non-native speaker here although you wouldn’t be able to tell what talking to me, until you hear me confuse when to use this vs that, and lose vs loose. Some things my brain just refuses to remember. | | |
| ▲ | abustamam 30 minutes ago | parent [-] | | Native English speaker here and my linguist wife constantly has to remind me that I use many propositions incorrectly, because my parents were non-native speakers and in their native language (Behasa Melayu), those propositions were the same words. For some reason I can't think of those propositions at the moment, but it's definitely prevalent when I'm speaking French and use the wrong proposition, only because I'd have used the wrong proposition in English. |
|
| |
| ▲ | ses1984 2 hours ago | parent | prev | next [-] | | I’m guessing most cases of loose/lose switch happen when English isn’t someone’s first language. | | |
| ▲ | theowaway213456 2 hours ago | parent [-] | | In my experience, this mistake happens all the time for native English speakers born in the US. |
| |
| ▲ | duckmysick an hour ago | parent | prev | next [-] | | It doesn't make sense to have "lose" pronounced as it is. We have rose, pose, dose, nose all pronounced with ō. And then you have lose pronounced as loo͞z. It feels natural to put two O's in there when you write it. | | |
| ▲ | freehorse an hour ago | parent [-] | | English is not a rules-based language, esp wrt pronunciation. Words can be pronounced as anything. | | |
| ▲ | saganus 39 minutes ago | parent | next [-] | | When I discovered the pronunciation of Houston, TX and Houston, NY... my mind was blown | |
| ▲ | abustamam 22 minutes ago | parent | prev [-] | | This is true, but if the goal is to be understood, it's in the speaker's best interest to pronounce words in a way they'll best be understood. So I think even if the language itself lacks formal rules, we as a society of communicators should align on some loose set of rules. |
|
| |
| ▲ | 2 hours ago | parent | prev | next [-] | | [deleted] | |
| ▲ | saidnooneever 2 hours ago | parent | prev | next [-] | | people are from many places | | |
| ▲ | 2 hours ago | parent | next [-] | | [deleted] | |
| ▲ | gambiting 2 hours ago | parent | prev [-] | | In all of those places loose means something that isn't tight and lose something that you've displaced. I think it would be correct to say people display varying command of the English language, which to me has never been a problem - as long as I can understand what you mean, it's all fine. |
| |
| ▲ | verisimi 2 hours ago | parent | prev [-] | | It's fine, nothing to see. Just focus on the intended meaning not the underlying delivery. Mere words don't really impact communication. Right? |
| |
| ▲ | iugtmkbdfil834 3 hours ago | parent | prev | next [-] | | Ok. This is was either brilliant or I did not wake up yet. | |
| ▲ | renegade-otter 2 hours ago | parent | prev [-] | | This is not the first time Pete Hegseth charged into a bar, started swinging his fists and screaming "don't you know who my father is", only to find his junk in a vise with no graceful way get it out. | | |
| ▲ | abustamam 29 minutes ago | parent [-] | | For some reason I thought you were doing a setup for a joke... "The President of the US, the Secretary of Defense, Iranian Prime Minister walk into a bar..." |
|
|
|
| ▲ | MostlyStable 2 hours ago | parent | prev | next [-] |
| I'm really tired of these claims that Mythos is "nothing by PR hype". It should be at this point eminently clear that the people working at Anthropic believe the things they say about their models. And for mythos in particular, at this point there are far too many people outside of Anthropic who have seen it and/or the vulnerabilities it has discovered for "it's nothing but hype" be anything close to a sensible position. I'm not saying we should blindly believe them; they have often used more caution than was entirely warranted (this is, in my opinion, a good thing) but the idea that all of this around Mythos and glasswing is nothing but marketing hype is nonsense. Might a disinterested 3rd party decide that they think the fire is smaller than Anthropic's smoke warranted? Yes that's possible. But the idea that it's all smoke and no fire at this point deserves no resepect whatsoever. |
| |
| ▲ | maebert an hour ago | parent [-] | | To be clear I’m not claiming that Mythos is _nothing_ but PR hype, merely that Anthropic is playing its cards really well, which is a claim independent of actual capabilities of their latest model. |
|
|
| ▲ | hoppp 3 hours ago | parent | prev | next [-] |
| They created the model specifically to play this game. |
| |
| ▲ | bitexploder 2 hours ago | parent | next [-] | | They said they designed it to be a better coding model. Something that has long been true: better software engineers are better vulnerability hunters as well. I think we are seeing that play out with Mythos. | |
| ▲ | carlossouza an hour ago | parent | prev [-] | | “Show me the incentives and I will show you the outcomes.”
Charlie Munger |
|
|
| ▲ | 2 hours ago | parent | prev | next [-] |
| [deleted] |
|
| ▲ | seydor 3 hours ago | parent | prev | next [-] |
| Plot twist it gets acquired by the US govt. |
| |
| ▲ | khuey 3 hours ago | parent [-] | | If this happens it's not going to take the form of them getting "acquired", they're going to end up forced to become a defense contractor like Lockheed Martin or Raytheon where their primary customer is the USG and all of their sales require governmental approval. | | |
| ▲ | bilbo0s an hour ago | parent [-] | | And the absolute last group the government would ever approve access to would be "We the People". I know it's not realistic at this point, but I really hope the Chinese labs will release models that run local and are on par with the abilities of frontier models. That is, I hope the idea of frontier models goes away. Because if not, what we're looking at is a seriously bleak outlook with respect to economic freedom for anyone outside the 0.1%. We may even be looking at out and out lack of economic viability for vast segments of the population. |
|
|
|
| ▲ | ethbr1 3 hours ago | parent | prev | next [-] |
| 'Anthropic is / isn't lying about Mytho's capabilities' is the less interesting conversation. The more interesting one is: 1. Assuming even incremental AI coding intelligence improvements
2. Assuming increased AI coding intelligence enables it to uncover new zero day bugs in existing software
3. Then open source vs closed source and security/patch timelines will all need to fundamentally change
Whether or not Mythos qualifies as (1), as long as (2) is true then it seems there will eventually be a model with improvements, which leads to (3) anyway.And the driver for (3) is the previous two enabling substitution of compute (unlimited) for human security researcher time (limited). Which begs questions about whether closed source will provide any protection (it doesn't appear so, given how able AI tools already are at disassembly?), whether model rollouts now need to have a responsible disclosure time built in before public release, and how geopolitics plays into this (is Mythos access being offered to the Chinese government?). It'll be curious what happens when OpenAI ships their equivalent coding model upgrade... especially if they YOLO the release without any responsible disclosure periods. |
| |
| ▲ | notpachet 2 hours ago | parent | next [-] | | > Which begs questions about whether closed source will provide any protection (it doesn't appear so, given how able AI tools already are at disassembly?) Disassembly implies that you're still distributing binaries, which isn't the case for web-based services. Of course, these models can still likely find vulnerabilities in closed-source websites, but probably not to the same degree, especially if you're trying to minimize your dependency footprint. | |
| ▲ | vbezhenar 2 hours ago | parent | prev [-] | | > it doesn't appear so, given how able AI tools already are at disassembly? If that's your concern, shareware industry developed tools to obfuscate assembly even from the most brilliant hackers. | | |
| ▲ | kriztw 11 minutes ago | parent [-] | | That's not true, they did do obfuscation but the main sneaky thing they did was to make hackers think that they had found all of the checks, and then hide checks that would only trigger half way through the game. That kind of obfuscation is also not relevant to security vulnerabilities. AI is already superhuman at reading and understanding assembly and decompilation output, especially for obfuscated binaries. I have tried giving the same binary with and without heavy control flow obfuscation to the same model, and it was able to understand the obfuscated one just fine. |
|
|
|
| ▲ | DonsDiscountGas 3 hours ago | parent | prev | next [-] |
| Worth noting that Trump was one who labeled them a supply chain risk for the horrible crime of setting really basic guardrails around usage. (And it's "lose" btw) |
| |
| ▲ | veidr 5 minutes ago | parent | next [-] | | turns out it was spelled "lusage" the whole time | |
| ▲ | Telemakhos 2 hours ago | parent | prev | next [-] | | Governments are sovereign: they tell people what to do (by making laws, by exercising a monopoly of violence, etc), and nobody tells them what to do. Governments also fight wars, which means lives depend on the government's ability to command. Private companies make products. When those products were plowshares or swords or missiles, the company didn't really have a say over how they were used, and could be compelled by the government to supply them. Now that new cloud and AI products that increase government command abilities live on servers controlled by private companies, private companies think they can tell government what to do and not do. No government will accept that, because the essence of government is autocratic sovereignty: the sovereign commands and is not commanded. | | |
| ▲ | Filligree an hour ago | parent | next [-] | | In American law, companies have the choice of whether or not to do business with the government, outside of a few corner cases. There’s a process for forcing them, but it can’t just be because the leader says so. In this particular case Anthropic had a contract stating what the military could and could not use their models for. The military broke that contract. Anthropic declined to sign a revised one. This is within their rights, and more to the point, the government should absolutely not be allowed to unilaterally alter contracts they’ve already signed! Predictability is the whole point. Undermining it is how you destroy your own economy. | | |
| ▲ | Geezus_42 11 minutes ago | parent | next [-] | | Sure, they have a "choice", except that no one turns done the kind of money the government has to offer, and if the company is public they are legally obligated to increase shareholder value. | |
| ▲ | orochimaaru an hour ago | parent | prev [-] | | That is allegedly not what happened. Anthropic’s CEO was happy to grant waivers on a case by case basis. The problem is the branches of the government that Anthropic was doing business with found it infeasible to do this. They had another problem. If one of their contractors used Claude to engineer solutions contrary to Anthropic’s “manifesto” would Claude poison pill the code? Basically Anthropic wanted the angels halo and the devils horns and the govt said pick one. | | |
| ▲ | SpicyLemonZest an hour ago | parent [-] | | > That is allegedly not what happened. Anthropic’s CEO was happy to grant waivers on a case by case basis. The problem is the branches of the government that Anthropic was doing business with found it infeasible to do this. That's not what the presidential announcement blacklisting Anthropic said. It said they're being punished for trying to require that the military follow their terms of service. | | |
| ▲ | orochimaaru 28 minutes ago | parent [-] | | That’s the other pov (from the govt angle) - https://www.businessinsider.com/pentagon-official-details-ho... The media is usually flush with defending Anthropic. And yes - the supply chain risk label is too broad. But there is another side to the story and Anthropic isn’t an “innocent” as made out to be. | | |
| ▲ | SpicyLemonZest 5 minutes ago | parent [-] | | I've heard this POV before, I just re-read it again, and I genuinely do not understand which part of it you think shows Anthropic is anything but innocent. To me it seems pretty clear: Emil Michael heard that Anthropic was asking questions about how their system was used, and he thinks that attitude is an unacceptable security risk. He won't accept the use of systems that were developed based on "their constitution, their culture, their people" or "their own policy preferences". He'll only use systems developed by people who understand, as Sam Altman promised to, that the US military is not to be questioned. |
|
|
|
| |
| ▲ | mcmcmc 2 hours ago | parent | prev | next [-] | | > the essence of government is autocratic sovereignty *was Democracy was and is radical for putting the common people in charge of the government. The right to petition for redress of grievances is literally in the first amendment. Government is a social contract, enforced with state violence on one end and mob violence on the other. If you want to return to autocratic rule, I hear North Korea is lovely this time of year. | | |
| ▲ | JackFr an hour ago | parent [-] | | More importantly in the United States we have certain rights which cannot be abridged, even by a majority of the electorate though the government. | | |
| ▲ | Geezus_42 14 minutes ago | parent [-] | | Except the politicians just ask their rich friends to do the things they aren't allowed to do and then act like there's nothing they can do. |
|
| |
| ▲ | 2 hours ago | parent | prev [-] | | [deleted] |
| |
| ▲ | Joel_Mckay 3 hours ago | parent | prev [-] | | "basic guardrails" within activation capping is not separable for high granularity trained models. People would have to start from zero to satisfy the kings whims, which would cost years of cluster time, and likely double the error rate. Governments are difficult customers for software firms, as most military folks get an obscure exemption from copyright law at work. Anthropic finding other revenue sources is a good choice, if and only if the product has actual utility (search is an area LLM are good at.) =3 |
|
|
| ▲ | jazz9k an hour ago | parent | prev | next [-] |
| It's like opening up an exclusive night club. Everyone is talking about it and wants in, even though most know nothing about what's actually inside. |
|
| ▲ | kristofferR 21 minutes ago | parent | prev | next [-] |
| Not only that, but I feel there's a lot to validity of this meme from reddit:
https://i.redd.it/jxfayl16q5wg1.jpeg . Maybe not "completely out", but at least not having enough available capacity to release a model way bigger than Opus publicly. |
|
| ▲ | burner-phone73 3 hours ago | parent | prev | next [-] |
| The position doesn't matter. Nobody sane listens to what the orange or "the USA" says because it could be the complete opposite tomorrow. Which sadly is exactly the position where the orange wants to be. Free reign for him and nobody cares. |
| |
| ▲ | JackFr an hour ago | parent [-] | | I think the Dutch would take issue with you throwing around "orange" like that. | | |
| ▲ | ineedasername an hour ago | parent [-] | | If Alexander or any of his usurping ancestors has a problem then he can go ride a horse over a molehill. Oh, what, is that line a bit too soon? Tandem Triumphans! |
|
|
|
| ▲ | vaginaphobic 3 hours ago | parent | prev | next [-] |
| [dead] |
|
| ▲ | me_me_me 3 hours ago | parent | prev | next [-] |
| [dead] |
|
| ▲ | Hizonner an hour ago | parent | prev | next [-] |
| > The whole artificial scarcity Anthropic created around Mythos / Glasswing is quite brilliant to be honest (I’m Not saying ethical, just brilliant). The commercial gains are one side of course. You mean the obvious commercial losses caused by keeping an expensively created product effectively off the market altogether? What the actual fuck is with people who come up with stuff like this? |
|
| ▲ | giancarlostoro an hour ago | parent | prev [-] |
| I'd be okay with our military / NSA having the best model possible. Now if only the NSA would vet key people in our government, there should be no reason a foreign entity can just hack the FBI director's personal GMAIL, the NSA should be trying to break into their accounts before our enemies do. It's ridiculous that they're not already doing this. |
| |
| ▲ | NickC25 an hour ago | parent [-] | | >Now if only the NSA would vet key people in our government They probably did that for a while. Sadly, they as an agency were un-vettable to the general public, and abused that position to create tons of blatantly unconstitutional programs that they tried to hide. | | |
| ▲ | giancarlostoro 42 minutes ago | parent [-] | | I agree, I know some people hate the surveillance stuff, but unfortunately we only hear the bad mostly of what it does, we never hear the actual good impact some of these agencies do. I wish they'd release some sort of annual report, but how do you do that without telling your enemies that people are "trying" or being "caught" doing things. It's a pain in the butt. There are truly evil people in this world, way worse than we probably realize. Our military is not perfect, our country is not perfect, no country or military is, but we generally do our very best to do what is right historically speaking. It's hard to see that if you get lost in the politics of things. |
|
|
