Visa’s technology team got a wake-up call just weeks into testing Anthropic’s most powerful unreleased AI model. The system was finding and weaponizing vulnerabilities in critical code bases faster than most human red teams could even catalog them.
Rajat Taneja, Visa’s president of technology, shared the company’s findings from Anthropic’s Project Glasswing during preparations for his session at VB Transform 2026. The takeaway: frontier AI models are simultaneously the best defensive tool and the most dangerous offensive weapon the cybersecurity world has ever seen.
What Project Glasswing actually found
Anthropic launched Project Glasswing on April 7, 2026, giving a select group of roughly 50 partners access to the Claude Mythos Preview, an unreleased model with autonomous vulnerability-hunting capabilities.
Within the first month of testing, the model identified over 10,000 high- and critical-severity zero-day vulnerabilities across major systems and software. That includes older, deeply embedded flaws in systems like OpenBSD and FFmpeg.
