{"id":237405,"date":"2026-06-25T21:49:00","date_gmt":"2026-06-26T01:49:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/25\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/"},"modified":"2026-06-26T00:05:19","modified_gmt":"2026-06-26T04:05:19","slug":"chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/25\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/","title":{"rendered":"Chinese cybersecurity company claims it\u2019s built a better-than-Mythos bug finder"},"content":{"rendered":"<p><a href=\"https:\/\/www.theregister.com\/security\/2026\/06\/26\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/5262642\">Chinese cybersecurity company claims it\u2019s built a better-than-Mythos bug finder<\/a><\/p>\n<p><a href=\"https:\/\/www.theregister.com\/security\/2026\/06\/26\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/5262642\">https:\/\/www.theregister.com\/security\/2026\/06\/26\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/5262642<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-25 21:49:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.theregister.com\">www.theregister.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n<p>        Security<\/p>\n<p>        Qihoo 360, which the US has banned, says it\u2019s needed as a deterrent to weaponized Anthropic models<\/p>\n<p>    Chinese cybersecurity vendor Qihoo 360 claims it\u2019s built an AI bug-finder that\u2019s better than Anthropic\u2019s Mythos model.CEO Zhou Hongyi revealed the model in a speech at the 14th Beijing Cybersecurity Conference, which Qihoo 360 organizes. Chinese media outlets have transcribed the talk, in which Zhou described Mythos as \u201cequivalent to a \u2018cyber nuclear weapon\u2019,\u201d because the USA\u2019s ban on foreign nationals accessing the model gives America a tool with which to find flaws in software upon which other nations rely.Zhou thinks China needs equivalent capabilities as a deterrent, but suggested replicating Mythos is not a viable approach.<br \/>\n\u201cMythos follows a typical large-scale model approach: the strongest model, the strongest computing power, and the strongest chips \u2013 a strategy of sheer brute force,\u201d he said. \u201cHowever, this path has an implicit prerequisite: your model capabilities must be sufficiently strong. Objectively speaking, domestically developed models still lag behind by 20 percent to 30 percent in underlying capabilities.\u201d<br \/>\nThe CEO therefore thinks China can\u2019t wait for its own models to catch up and needs to find another way to build Mythos-grade bug-finders.Helpfully, Qihoo 360 has found those alternative methods by distilling its 20 years of experience fighting cyber-threats and colossal malware library into security-specific models and agents. The company has put that to work in what Zhou described as a \u201cmulti-agent swarm.\u201d<br \/>\n\u201cIf the American approach is about cultivating a genius hacker, the 360 approach is about organizing a professional attack and defense team,\u201d he said. \u201cWhen faced with a target, the swarm doesn&#8217;t perform single-point analysis, but rather collaborates: first, it models the threat and filters high-risk attack surfaces; then, it follows the data flow across files to discover potential vulnerabilities.\u201dThe company\u2019s agents apparently \u201cautomatically build sandbox environments, automatically generate exploit code, and conduct real-world testing. The result is that every vulnerability is \u2018confirmed\u2019 rather than just suspected. After completing a task, the swarm also summarizes and reviews its performance, becoming smarter with each use. This is something a single large model can hardly do.\u201dQihoo calls this approach \u201cTulongfeng\u201d and says it\u2019s already finding flaws in open-source and commercial software.\u201cWe automatically discovered a Windows kernel privilege escalation vulnerability that had been dormant for five years, an Office remote code execution vulnerability that had been dormant for eight years, and an Excel vulnerability that had been dormant for 10 years, earning official recognition from Microsoft,\u201d Zhou boasted. The CEO said the tool found plenty of flaws in OpenClaw \u2013 a feat that human researchers have also achieved.Zhou said Qihoo 360 has created another AI-powered security tool called \u201cYitianzhen\u201d that automatically simulates potential attacks against an organization\u2019s cyber-defenses, then suggests and\/or implements remediations. The company has created an alliance of local cybersecurity companies to use it and create a bulwark against Project Glasswing \u2013 the group of entities Anthropic allows to use Mythos under controlled conditions.US authorities have sanctioned Qihoo 360 on grounds that it probably supplies China\u2019s military. China&#8217;s National Computer Virus Emergency Response Center (CVERC) often cites and publicizes the company\u2019s research, sometimes in its documents that allege the US hacks itself to make China look bad. \u00ae<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Chinese cybersecurity company claims it\u2019s built a better-than-Mythos bug finder https:\/\/www.theregister.com\/security\/2026\/06\/26\/chinese-cybersecurity-company-claims-its-built-a-better-than-mythos-bug-finder\/5262642 Publish Date: 2026-06-25 21:49:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":237406,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/image.theregister.com\/245535.jpg?imageId=245535&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=1200&height=683","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,31,35,32,27],"class_list":["post-237405","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-exploit","tag-hacker","tag-malware","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/237405"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=237405"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/237405\/revisions"}],"predecessor-version":[{"id":237407,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/237405\/revisions\/237407"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/237406"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=237405"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=237405"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=237405"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}