Cohesity has been granted access to Anthropic's Claude Mythos Preview through Project Glasswing, giving the data security company entry to a restricted AI model designed for critical software environments.
It plans to use the model to identify, test and fix potential vulnerabilities across its platform and product portfolio. Anthropic created Project Glasswing for organisations that build and run critical software infrastructure and want to apply advanced AI tools to security work.
The arrangement places Cohesity among a small group of companies using a frontier AI model in a controlled setting to examine their own systems. It also reflects a broader industry shift as software suppliers look for faster ways to respond to security flaws at a time when artificial intelligence is accelerating both vulnerability discovery and exploitation.
Security focus
Cohesity provides data resilience and recovery products to large organisations, including governments and multinational companies. More than 70% of the Fortune Global 500 rely on its services, along with customers in more than 140 countries, according to the company.
Under the Project Glasswing framework, findings from participating organisations are shared across the partner community. Issues uncovered in one environment may therefore help inform defences and remediation work elsewhere in the software security ecosystem.
For Cohesity, the focus is on reducing the time between the emergence of a potential weakness and its remediation. The work will cover both its core platform and broader product set.
Security teams have increasingly turned to AI systems to support code review, threat analysis and vulnerability research. At the same time, technology companies have warned that the same tools can help attackers locate weaknesses more quickly, increasing pressure on vendors to strengthen internal testing and remediation processes.
Restricted access
Anthropic has positioned Project Glasswing around software considered critical to business and government operations. Access to Claude Mythos Preview is restricted to selected participants working on security-sensitive systems.
That selection is significant for Cohesity because its software is closely tied to backup, recovery and broader cyber resilience operations, which many organisations consider essential after ransomware attacks and other major IT disruptions. Companies in this segment have faced growing scrutiny over how quickly they can detect weaknesses and restore systems after an incident.
Sanjay Poonen, Chief Executive Officer, Cohesity, said the company's customer base had shaped its approach. "Many of the largest organisations in the world, including more than 70% of the Fortune Global 500 and some of the largest governments, rely on Cohesity for their data resilience. That responsibility drives everything we do."
He said the company plans to apply the model directly to its own environment. "Being part of Project Glasswing lets us put Mythos Preview to work directly on our platform, finding and fixing issues proactively, so we can maintain the resilience across our platform and product portfolio for the organizations that depend on us," said Poonen.
Broader strategy
Cohesity has built its business around backup, recovery, data protection and security software for large enterprises and public sector bodies. It has also promoted the use of AI in areas such as threat detection and operational insight, while stressing Zero Trust security principles in its platform design.
The move adds another layer to that strategy by bringing an external AI model into internal security assessment. Rather than using the technology for customer-facing features, the immediate focus is on product assurance and software hardening.
Backers cited by Cohesity include NVIDIA, Amazon, Google, IBM, Cisco and HPE. Its standing with large customers and infrastructure partners has made it a notable player in a market where security, resilience and recovery are increasingly treated as board-level concerns.
Project Glasswing's collaborative model may also have an effect beyond any single participant. By sharing findings across the programme, the initiative is designed to spread lessons from one company's testing into the broader effort to secure software systems that underpin critical operations.