When AI Learns to Break Things
Anthropic’s Mythos, an advanced AI system designed to autonomously identify and exploit software vulnerabilities, has become a significant concern for India’s financial sector. The AI reportedly identified security weaknesses in OpenBSD, an operating system renowned for its robustness. This development raises alarms for a nation with a heavily digitized financial infrastructure, including UPI, Aadhaar authentication, and cloud-native banking APIs. The potential for Mythos to uncover vulnerabilities in these systems underscores a pressing need for heightened cybersecurity measures.
The Government Scrambles
In response to the emergence of Mythos, Finance Minister Nirmala Sitharaman convened a high-level security meeting with leading banks, emphasizing the unprecedented cybersecurity risks posed by such AI systems. A panel led by SBI Chairman CS Shetty has been established to assess these risks. The government is advocating for improved threat-intelligence sharing among banks, regulators, and agencies like CERT-In. This development signifies a shift in cybersecurity perception, from mere compliance to a critical component of national economic security.
Legacy Baggage Remains
Kotak Mahindra Bank’s MD and CEO Ashok Vaswani has pointed out the transition from human-speed to machine-speed cyber threats, necessitating rapid detection and response capabilities. However, analysts, including Gartner’s Jaishiv Prakash, express skepticism regarding the readiness of Indian banks. Many financial institutions still rely on manual processes, fragmented asset visibility, and slow vendor coordination, vulnerabilities that AI-based systems like Mythos could exploit with ease.
Fintech’s Soft Underbelly
India’s fintech sector is intricately linked with the broader banking ecosystem through payment gateways, lending APIs, and embedded finance systems. This integration creates potential access points for cyber-attacks to penetrate larger financial networks via smaller, less-secure platforms. Leading fintech companies such as Paytm, Razorpay, and Pine Labs are reportedly engaging with Anthropic to use Mythos for their own vulnerability assessments, acknowledging the threat while attempting to leverage the AI for their benefit.
Delhivery’s Mixed Q4 Show
Delhivery, India’s logistics giant, reported a nearly flat year-over-year consolidated net profit of ₹72.4 crore for Q4 FY26, despite a 30% increase in operating revenue to ₹2,850 crore. Total expenses also rose by 26.9% to ₹2,853.1 crore. The company processed 306 million express parcel shipments, and PTL freight tonnage increased by 20% to 5.49 lakh metric tonnes. For the full fiscal year, Delhivery’s net profit saw an 8% year-over-year increase, reflecting both growth challenges and operational scaling in a competitive logistics market.
Implications for India’s Startup Ecosystem
The introduction of Mythos into India’s tech landscape highlights the urgent need for startups, particularly in fintech, to prioritize cybersecurity. As digital infrastructure becomes increasingly sophisticated, startups must invest in advanced security technologies and collaborate with cybersecurity firms to protect their systems. The government’s proactive stance on cybersecurity could lead to stricter regulations and increased oversight, which may affect how startups operate and scale.
What May Happen Next
For founders and investors, the advent of Mythos signifies a paradigm shift in cybersecurity priorities. Startups will need to integrate advanced security measures into their core operations to remain competitive and secure. Investors should monitor developments in cybersecurity technologies and consider them a critical factor in evaluating potential investments. The focus will likely shift toward innovation in security solutions, as companies seek to protect their digital assets and maintain trust in the evolving landscape.
