Amazon research triggers White House ban on Anthropic Fable

๐กUnderstand how AI safety research is directly shaping government export controls and model accessibility.
โก 30-Second TL;DR
What Changed
Amazon researchers discovered prompts that allow Fable 5 to generate information useful for cyberattacks.
Why It Matters
This event highlights the growing intersection of AI safety research and national security policy. It signals that major cloud providers are actively auditing frontier models, leading to stricter government oversight on model deployment.
What To Do Next
Audit your own LLM deployment pipelines for potential prompt injection vulnerabilities that could lead to unauthorized data exfiltration.
Key Points
- โขAmazon researchers discovered prompts that allow Fable 5 to generate information useful for cyberattacks.
- โขCEO Andy Jassy shared these findings directly with the White House.
- โขThe U.S. government issued an export control directive restricting foreign access to Fable 5 and Mythos 5.
- โขAnthropic has subsequently cut off access to these models in compliance with the new directive.
๐ง Deep Insight
Web-grounded analysis with 30 cited sources.
๐ Enhanced Key Takeaways
- โขThe vulnerabilities discovered by Amazon researchers in Anthropic's Fable 5 model were described by the U.S. government as a 'jailbreak' method capable of bypassing safeguards to identify software vulnerabilities, although Anthropic characterized them as 'narrow, non-universal jailbreaks' for 'previously known, minor vulnerabilities' discoverable by other models.
- โขThe export control directive, issued by the Trump Administration, represents a significant escalation in U.S. government efforts to control advanced AI models themselves, moving beyond previous restrictions primarily focused on AI chips and hardware.
- โขPrior to the ban, Anthropic had already deployed Mythos 5 to a select group of vetted cyber defenders and critical infrastructure operators through 'Project Glasswing,' acknowledging its powerful cybersecurity capabilities, which included identifying thousands of high-severity zero-day vulnerabilities in major operating systems and web browsers.
- โขThe government's order forced Anthropic to 'abruptly disable' both Fable 5 and Mythos 5 for all customers, including foreign national employees, leading to service disruption and a public statement from Anthropic expressing disagreement and calling the situation a 'misunderstanding.'
- โขThis incident follows a contentious period in Anthropic's relationship with the Trump Administration, which included the company's refusal to allow the U.S. military to use its AI models for fully autonomous weapons systems, resulting in Anthropic being placed on a Pentagon supply chain blacklist.
๐ Competitor Analysisโธ Show
| Feature/Metric | Anthropic Fable 5 / Mythos 5 | Anthropic Claude Opus 4.8 | OpenAI GPT-5.5 (Implied) |
|---|---|---|---|
| Model Class | Mythos-class (highest tier) | Opus-class (previous top tier) | Frontier model |
| Pricing (per million tokens) | Input: $10, Output: $50 | Input: ~$5, Output: ~$25 (half of Fable 5) | Input: ~$5 (half of Fable 5) |
| Core Capabilities | Agentic work, tool use, long-horizon reasoning, low error propagation, advanced vision, coding, technical work. Mythos 5 has lifted cyber safeguards. | Strong complex-reasoning, less capable in high-risk cyber/bio domains than Mythos-class. | General-purpose AI, strong reasoning. |
| Cybersecurity Capabilities | Mythos 5: Identified 23,000 critical vulnerabilities, including zero-days in major OS/browsers; can chain exploits. Fable 5: Safeguards route cyber queries to Opus 4.8. | Significantly less capable than Mythos 5 in exploit development and vulnerability discovery. | Not explicitly detailed in search results for direct comparison. |
| Benchmarks | State-of-the-art on Hebbia's Finance Benchmark, CursorBench (software engineering), SWE-Bench Pro (80.3%), Hex analytics (>90%). | Outperformed by Mythos 5 in exploit development; found 10x fewer Firefox vulnerabilities than Mythos Preview. | Fable 5 completed a frontier physics research task in 36 hours using 1/3 the reasoning tokens it took GPT-5.5 four days to match. |
๐ ๏ธ Technical Deep Dive
- Model Identity: Claude Fable 5 and Claude Mythos 5 are based on the same underlying model weights, with the primary distinction being the implementation of safety layers and access controls.
- Safety Architecture: Fable 5 incorporates safety classifiers that automatically detect and reroute queries related to high-risk domains (cybersecurity, biology, chemistry, and distillation) to the less capable Claude Opus 4.8 model, notifying the user of the fallback. Mythos 5, conversely, operates with these specific safeguards lifted.
- Capability Class: Both models are designated as 'Mythos-class,' indicating optimization for advanced agentic work, robust tool use, long-horizon reasoning, and minimized error propagation across multi-step tasks.
- Advanced Features: They exhibit extended context processing, enhanced instruction-following, and sophisticated vision capabilities, enabling them to interpret diagrams, charts, and tables within PDFs, and to self-critique coding outputs against visual designs.
- Vulnerability Discovery (Mythos): During 'Project Glasswing,' Mythos Preview (a predecessor to Mythos 5) demonstrated the ability to identify 23,000 critical vulnerabilities, including zero-day flaws in major operating systems and web browsers, and could autonomously chain multiple vulnerabilities to create functional exploits.
- Data Retention Policy: For Fable 5 and Mythos 5, Anthropic mandates a 30-day data retention period for safety monitoring, which supersedes any prior zero-retention agreements for enterprise customers. This data is exclusively for safety analysis and is not used for model training.
- Context Window and Output Limit: Fable 5 features a 1 million token context window and a 128,000 token output limit.
๐ฎ Future ImplicationsAI analysis grounded in cited sources
โณ Timeline
๐ Sources (30)
Factual claims are grounded in the sources below. Forward-looking analysis is AI-generated interpretation.
- time.com
- anthropic.com
- securityweek.com
- thehackernews.com
- theguardian.com
- cbc.ca
- techstrong.ai
- wusa9.com
- thehackernews.com
- reddit.com
- anthropic.com
- anthropic.com
- anthropic.com
- thehackernews.com
- anthropic.com
- reddit.com
- anthropic.com
- nextgov.com
- mindstudio.ai
- medium.com
- mindstudio.ai
- codeculture.store
- finout.io
- medium.com
- amazon.com
- claude.com
- anthropic.com
- bitsight.com
- azure.com
- jdsupra.com
๐ฐ Event Coverage
Weekly AI Recap
Read this week's curated digest of top AI events โ
๐Related Updates
AI-curated news aggregator. All content rights belong to original publishers.
Original source: The Verge โ

