Maggie Miller

New: Multiple Trump admin officials are concerned National Cyber Director Sean Cairncross is not the right man to lead on their AI security efforts. W/@cheyennehaslett @samjsutton @aarontmak and @delizanickel politico.com/news/2026/05/1…

American staff took everything Chinese officials handed out - credentials, burner phones from WH staff, pins for delegation - collected them before we got on AF1 and threw them in a bin at bottom at stairs. Nothing from China allowed on the plane. We’re taking off shortly for America

NEW: Director of National Intelligence Tulsi Gabbard has tapped two individuals to coordinate work across U.S. spy agencies to monitor threats to the 2026 midterms. therecord.media/odni-taps-offi…

SCOOP: Lawmakers' prescription info was compromised in a data breach at a contractor used by Congress’ Office of the Attending Physician The Capitol's top doc is making personal calls politico.com/live-updates/2…

A lot of people have been wondering about Mythos, Glasswing, and the vulns we / our partners are fixing. Today, I’m excited for us to start sharing more. (For context, I lead Glasswing @AnthropicAI.) Two independent evaluations this week—from XBOW and the UK AISI—confirm what we've been seeing internally: Claude Mythos Preview is a step change in autonomous cybersecurity capabilities. We need to start preparing fast for a world of models with this level of capabilities. The UK AI Security Institute tested the model we shipped at the launch of Project Glasswing and found Mythos Preview is the first model to solve both of their end-to-end cyber ranges, including one (Cooling Tower) which no model had ever cleared. But attackers (and defenders) have sophistication & cost constraints – Mythos is also the only model that clears every one of their tasks estimated over 8 hours under their deliberately low 2.5M-token cap. XBOW tested it on their offensive security benchmarks, finding "token-for-token, unprecedented precision." It's the only model to succeed at subtle V8 sandbox work. Other Glasswing partners shared similar stories. In a few weeks of testing, Mythos Preview has helped them find many thousands of (estimated) high + critical severity vulnerabilities, sometimes double what they'd normally find in a year. I don't share this to boost Mythos. In fact, this is not about Mythos. It’s about preparing for the coming world of models being better, faster, cheaper, and more creative than some of the best human experts at dual use capabilities. Clearly, we need them supporting defenders as widely as can be done safely – and especially the least resourced ones. Within a year, Mythos will probably look quite dumb (relative to other new models). And others may release openly available or unguardrailed models of Mythos-level capabilities. We started Project Glasswing because capabilities like Mythos Preview's won't stay rare, or stay in careful hands. We are bringing it to defenders as fast as we responsibly can, while working to figure out, for example, the right safeguards and patching & disclosure processes. Also, to be clear, compute has never been a limiter in our rollout. Expect a fuller update on our Glasswing work in the coming days. XBOW report: xbow.com/blog/mythos-of… UK AISI report: aisi.gov.uk/blog/how-fast-…

Google says hackers used AI to create zero day security flaw for the first time dlvr.it/TSTZXX

Semafor: The Trump administration plans to invite CEOs from Nvidia, Apple, Exxon, Boeing, and other big companies to accompany the president on his trip to China next week, a person familiar with the matter said.

Confirming this recent story from @razhael: reuters.com/legal/litigati… In response to Mythos, CISA is considering a binding operational directive that would change the timelines for agencies to remediate vulnerabilities, including down to 3 days in some cases.

The latest on the Trump administration’s efforts to name a new nominee to lead CISA, with @johnnysaks130 in today’s Morning Cybersecurity newsletter: subscriber.politicopro.com/newsletter/202…

New: Tom Parker, a security services lead at IBM, has emerged as a potential contender to lead CISA after the most recent nominee withdrew himself from consideration for the role, five people familiar tell me: nextgov.com/people/2026/05…

The White House has delivered a list of questions to cyber/tech companies about confronting AI-powered digital attacks The deadline to respond is Friday Scoop from @aarontmak @delizanickel @johnnysaks130 politico.com/news/2026/04/3…

For Pros: Adam Cassady, President Trump’s pick to serve as the nation’s next cyber ambassador, was approved by the Senate Foreign Relations Committee on Thursday by a vote of 17-5. subscriber.politicopro.com/article/2026/0…

“Holy hell, that is strategic malpractice." Ex-Cyber Command officials respond to the news that Fort Meade hasn't stood up its election security team for the midterms: cnn.com/2026/04/30/pol…

New: @JeffBezos is attending the state dinner with his wife he told King Charles at a tech reception this afternoon (I was your pooler for this event)

@CYBERCOM_DIRNSA Asked if CYBERCOM/NSA has established an Election Security Group ahead of the midterms, @CYBERCOM_DIRNSA says: "I don't know that an ESG has been established yet, but we are prepared to as required." There were issues the last go round: therecord.media/nsa-cyber-comm…

King Charles III will give the first royal address to Congress in 35 years today — and it may require a little decoding. What to know: Understatement is everything. Our @Jack_Blanchard_ and @DashaBurns give some context on what to expect.👇 🔗Live blog: politi.co/49cVs2A

Breaking: House Homeland Dems just selected Rep. Delia Ramirez of Illinois to be new ranking member of the panel’s cybersecurity subcommittee. Comes after Rep Swalwell, who previously held the role, resigned from Congress earlier this month.

Clocking in as Politico’s unofficial Royal correspondent today

If you want to know what journalists do in an emergency — even one that threatens their immediate safety — they hunker down and bring you the news. This is my @politico colleagues reporting moments after a shooting shut down the #WHCD. Read their work: politico.com/news/2026/04/2…

scoop on @axios: CISA doesn't have access to Anthropic's Mythos model, two sources tell me. Interestingly, Anthropic briefed both CISA and NIST's Center for AI Standards and Innovation ahead of its public announcement, and NIST is testing Mythos. axios.com/2026/04/21/cis…