The Cipher

Daily brief · Cyber · AI · Tech

Daily brief at 7am Melbourne. Unsubscribe any time.

← The Cipher

Sunday 14 June 2026

Washington Pulls the Plug on Anthropic's Best Models — and the Precedent Is Bigger Than the Models

The US government ordered Anthropic to pull its two most powerful AI models offline worldwide — and the backstory involves Amazon's CEO, a disputed jailbreak, and a precedent that should worry every AI lab on the planet.

Lead story

Washington Pulls the Plug on Anthropic's Best Models — and the Precedent Is Bigger Than the Models

Late Friday afternoon US time, Anthropic received a government directive it couldn't negotiate around: suspend all access to Fable 5 and Mythos 5 for foreign nationals — inside the US or out — effective immediately. By evening, both models were dark for every user on earth, because there was no clean technical way to enforce the restriction without killing them entirely.

The stated reason was national security. The Commerce Department cited a discovered jailbreak technique that it believed could allow adversaries to extract dangerous capabilities from the models. Anthropic pushed back hard and publicly, writing that the jailbreak was "narrow" and that the capability it exposed was "widely available elsewhere." The company said it disagreed the finding should trigger a commercial recall affecting hundreds of millions of users, but it complied anyway.

Here's where it gets more complicated. TechCrunch reports that Amazon CEO Andy Jassy may have been the one who raised the original flag. Amazon is both a major investor in Anthropic and the company's primary cloud partner — AWS is how most of the world accesses Claude. If that reporting holds, a commercial partner effectively triggered a government shutdown of a competitor's most valuable product. That's a dynamic worth watching very carefully.

The broader precedent is what should keep AI lab executives up at night. The US government has now demonstrated it will use export control machinery — the same framework it uses to restrict semiconductor sales to China — to pull an AI model from the market at short notice, with limited explanation, and with global effect. Anthropic didn't get advance warning. It didn't get a detailed threat briefing. It got a 5:21 p.m. Friday order.

For Australian users and researchers, both models were simply unavailable from Saturday morning. Australia doesn't sit inside the "foreign national" carve-out — there is none. Australian companies and universities using Fable 5 or Mythos 5 via the API woke up to broken integrations with no timeline for restoration.

The irony here is pointed. Anthropic has built its entire brand identity around being the safety-conscious AI lab — the one that publishes responsible scaling policies, that runs red-team exercises, that flags its own models' risks. Now its most public safety disclosures appear to have been handed to regulators as ammunition. Being transparent about what your model can do, it turns out, also tells governments what they might want to suppress.

What to watch: Whether Fable 5 and Mythos 5 come back in a restricted form, whether other frontier labs (OpenAI, Google DeepMind) face similar orders for their most capable models, and whether the Commerce Department publishes any detail on the actual threat that justified this. Also watch for how Australia's AI safety discussions respond — the government has been developing its own AI governance framework, and this event will feature prominently in those conversations.

Also today

Chinese State Hackers Owned an Isolated Network's Auth Stack for a Decade

Researchers have disclosed a remarkably patient Chinese intrusion in which attackers took control of a target organisation's entire authentication infrastructure and maintained that access for roughly ten years — watching every admin action without ever needing to re-exploit. The technique involved hijacking the authentication flow itself, meaning valid credentials were no defence. Air-gapped or isolated networks are often treated as inherently safer, but this operation demonstrates that once the auth layer is compromised, isolation becomes irrelevant. Australian government and critical infrastructure operators running similar on-premises authentication architectures should treat this as a pointed reminder that 'isolated' is not the same as 'monitored.'

Bleeping Computer

Critical Splunk Enterprise RCE Flaw Requires Immediate Patching

Splunk has patched a critical vulnerability in Splunk Enterprise — CVE-2026-20253, CVSS 9.8 — that allows an unauthenticated attacker to create or truncate arbitrary files and potentially execute remote code. Affected versions are anything below 10.2.4 or 10.0.7. Splunk sits at the heart of many security operations centres; an unauthenticated RCE in your SIEM is a particularly bad look. Given that Splunk is widely deployed across Australian government agencies and large enterprises, defenders should treat this as a priority patch regardless of where it falls in the queue. No exploitation in the wild has been reported yet, but that window tends to be short for CVSS 9.8 findings.

The Hacker News

Amazon CEO Andy Jassy's Role in the Anthropic Shutdown

New reporting suggests Amazon CEO Andy Jassy raised concerns about Anthropic's Fable 5 and Mythos 5 models before the US government issued its shutdown directive. The detail matters because Amazon is both a major investor in Anthropic and the operator of the AWS infrastructure that powers the Claude API — making Jassy simultaneously a partner, a competitor through Amazon's own AI products, and apparently a government informant on capability risks. If accurate, it raises serious questions about the governance of strategic AI investments and whether commercial rivalries can find expression through national security channels.

TechCrunch

npm 12 Will Block Auto-Executing Install Scripts by Default

The next major version of npm — the package manager used by virtually every JavaScript and Node.js project on the planet — will stop running install scripts from dependencies automatically unless a developer explicitly permits them. It's a significant change: install scripts have been a vector for supply chain attacks for years, most infamously in cases where malicious packages execute code the moment they're installed. The change won't eliminate supply chain risk, but it removes one of the easiest free kicks attackers currently enjoy. Given Australia's growing software development sector and the prevalence of Node.js in government digital services, the update is worth tracking for anyone managing JS-heavy pipelines.

SecurityWeek

OpenAI Under Investigation by Multiple State Attorneys General

A coalition of US state attorneys general has opened an investigation into OpenAI, casting a wide net across the company's practices — from advertising policies to the handling of sensitive health data. The specific states involved haven't been confirmed. The investigation adds to a growing pile of regulatory scrutiny OpenAI is navigating simultaneously: the ongoing structural dispute over its for-profit conversion, international probes in the EU and UK, and now US state-level action. For Australian enterprises evaluating OpenAI products for health or government use, the health data angle is particularly worth monitoring given Australia's Privacy Act obligations.

TechCrunch

KPMG Pulls AI Usage Report After It Hallucinated Its Own Statistics

KPMG has quietly withdrawn a report on enterprise AI adoption after it emerged the document contained statistics that appeared to be fabricated by the AI tools used to produce it — a textbook case of hallucination in a professional research context. The firm hasn't detailed which figures were affected or how the errors slipped past review. The incident is a useful data point in the ongoing debate about AI in professional services: the risk isn't just that AI produces wrong answers, it's that confident, plausible-sounding wrong answers can travel far before anyone checks them. KPMG is a major player in Australian consulting and audit work.

TechCrunch

Meta's AI Division Is in Open Revolt, Report Finds

A new report describes Anthropic's shutdown as only the most visible AI drama of the week — inside Meta, 6,500 engineers in the company's consolidated AI unit are reportedly on the verge of a morale collapse. Sources describe a top-down restructuring that stripped researchers of autonomy, buried them in process, and created a unit people are desperately trying to transfer out of. Meta has made frontier AI a strategic priority and is pouring money into it, but talent retention in AI is driven as much by culture and research freedom as compensation. A discontented team of that scale is a meaningful risk to Meta's ambitions.

TechCrunch

Microsoft Hasn't Ruled Out Spinning Off Xbox

Microsoft is weighing a dramatic restructuring of its Xbox business, including laying off a significant portion of the division and potentially spinning it off as a separate company entirely. The company is also reassessing its next-generation Project Helix console. It's a remarkable shift for a division Microsoft spent roughly US$75 billion acquiring Activision Blizzard to strengthen. The underlying tension is familiar: gaming hardware is expensive, cyclical, and increasingly hard to justify when cloud and subscription revenues offer smoother returns. An Xbox spinoff would fundamentally reshape the console market and have downstream effects on Australian gaming retail.

The Verge

Apple's macOS 27 Brings a Meaningfully Upgraded Siri AI

Early hands-on testing of macOS 27 Golden Gate's developer beta suggests Apple's rebuilt Siri AI is a genuine step up from the version most users quietly disabled years ago. The new Siri integrates more deeply with system context and handles multi-step tasks more coherently than its predecessor. It's still early-stage software — the tester notes significant room for improvement before the public release — but for Apple, which has conspicuously lagged Google and Microsoft on AI assistant capability, this represents an important catch-up effort. The macOS 27 update will reach Australian users on the same global release schedule.

The Verge

The FBI Built a Fake Town to Train Agents on Cyberattacks

Tucked inside a building in Alabama, the FBI has constructed a physical replica of a small American town — complete with simulated infrastructure — purely for cybersecurity training exercises. The facility lets agents and partner organisations practise responding to attacks on systems like power grids, water treatment plants, and emergency services in a consequence-free environment. It's a novel approach to a genuine problem: cyber defenders rarely get to train on realistic operational technology targets because the real ones can't be taken offline. The concept mirrors wargaming traditions from military training and has parallels with Australia's own ACSC exercise programs.

TechCrunch

Disgruntled Ex-IT Worker Jailed for Attacking Former School District

A former IT administrator at an Iowa school district has been sentenced to 21 months in federal prison after launching a sustained cyberattack against his former employer following his dismissal. The attack disrupted classroom operations, deleted user accounts, and caused tens of thousands of dollars in damage. It's a well-worn archetype — the aggrieved insider with residual access credentials and a grievance — but the case is a useful reminder that off-boarding procedures and prompt credential revocation remain among the highest-value, lowest-cost security controls an organisation can implement. Australian schools and councils, which often run lean IT teams, are frequently exposed to the same risk.

Bleeping Computer

Sources consulted