UK to co-develop AI-powered cyber defence with frontier firms

What's happened

Dan Jarvis has warned that AI is accelerating cyber threats beyond traditional defence capabilities. The government is committing to national-scale AI-powered cyber defence and inviting frontier AI companies to collaborate, with a new resilience pledge and £90 million in extra funding to bolster cyber resilience, including for SMEs. Separately, Anthropic faces a breach around its Mythos Preview, raising concerns about access controls for high-risk models.

What's behind the headline?

What this means for readers

The UK is moving toward a collaborative, AI-empowered approach to protecting critical networks, treating cyber defence as a national-scale, continuous operation rather than a one-off upgrade.
Frontline AI developers are being urged to participate directly in security co-development, which could reshape how governments engage with the tech sector.
The breach discussion around Mythos highlights ongoing governance and access-control challenges for powerful cyber tools, potentially influencing policy and supplier risk management.

Key dynamics

The push for autonomous vulnerability identification and remediation within critical infrastructure is likely to accelerate, increasing demand for high-assurance AI systems.
Public-private partnerships may become a standard model, with voluntary cyber resilience pledges and targeted funding to bolster SME resilience.
The incident around Mythos underscores the need for tighter vendor controls and clearer incident response protocols when testing cutting-edge models.

Forecast

Expect further policy clarity on how public and private sectors share data and threat intel to enable rapid responses.
We will likely see additional funding rounds or regulatory steps aimed at securing AI-enabled cyber capabilities and critical national infrastructure.
The industry will intensify governance around access to powerful cyber models as incidents become more public and scrutinised.

How we got here

The CYBERUK conference in Glasgow has highlighted the rapid evolution of cyber threats enabled by AI. Government officials have signalled a shift from off-the-shelf solutions to collaborative, national-scale defence capabilities. At the same time, industry partners are testing high-risk models under select programs, while concerns rise about access and safeguards as models approach critical infrastructure usage.

Our analysis

The Scotsman (Martyn McLaughlin) reports Dan Jarvis has warned of a machine-speed threat and urged frontier AI firms to co-develop national cyber defence, with a £90 million uplift and a cyber resilience pledge. The Guardian (Dan Milmo) and NY Post coverage detail Anthropic's Mythos Preview breach and access issues through a third-party contractor environment, underscoring governance challenges and potential risks to critical infrastructure. Bloomberg corroborates details on unauthorized access via a private Discord forum with claims of testing motives; National Cyber Security Centre data cited by UK officials notes rising sophistication from state actors like China, Iran, and Russia in cyber operations.

Go deeper

What steps is the government taking to formalise collaboration with frontier AI firms?
How will SME cyber resilience funding be allocated and measured?
What governance controls are in place to prevent unauthorized access to high-risk AI models like Mythos?