9
Confirmed Glasswing CVEs from the initial 90-day program
10,000+
Glasswing findings across 200+ partner organizations
2,100+
Patches generated by Claude Security public beta
Aug 5-6
Black Hat USA 2026 Briefings, coinciding with Glasswing July report window

SponsoredRetool

Retool's new app builder is where AI-generated code ships safely

Building apps with AI is easy. Getting them to production safely is another story.

Start building for free today

Project Glasswing has a timeline that matters for defenders. The initial 90-day program ran from roughly March to June 2, 2026, when Anthropic expanded the partner network. That expansion starts a new 90-day window that closes in early August, days before the Black Hat USA 2026 Briefings on August 5-6. The July 2026 progress report is the next major Glasswing disclosure event, and its timing makes it one of the most consequential security disclosures of the summer. The initial Glasswing report established the baseline: 10,000+ findings, 9 confirmed CVEs, 200+ partner organizations, Claude Mythos scoring 21/41 on ExploitBench. The July update will tell defenders what has changed: which of the 9 CVEs are patched, what critical infrastructure sectors revealed, whether new CVEs have been assigned, and how the Claude Security patch program has scaled since the 2,100+ benchmark. This post covers what the July report is expected to contain, the five questions it should answer, why the Black Hat timing matters, and how to position your organization to respond when the report drops.

What the 90-Day Report Covers

Glasswing's 90-day report structure follows the coordinated vulnerability disclosure timeline. The program runs autonomous vulnerability discovery using Claude Mythos across partner organization environments, coordinates disclosure with affected parties during the 90-day window, and publishes findings that have completed the disclosure process at the end of the window. The July 2026 report covers the second phase of the program: the expansion that began June 2, 2026, bringing in additional partner organizations and new sector coverage. The report is expected to include an updated findings total (10,000+ from the initial phase; the expansion will add to that count), CVE status updates for the 9 confirmed CVEs from the initial phase, new CVE disclosures if any additional Glasswing findings have completed the CVD process and received formal assignment, critical infrastructure sector findings if the June expansion explicitly included healthcare, power, or water sector partners, and a Claude Security patch count update from the public beta's current 2,100+ patches.

Why the July Timing Is Significant: Black Hat Adjacency

The convergence of the Glasswing 90-day window closing and Black Hat USA 2026 Briefings on August 5-6 is not coincidental. Major security research disclosures and major security conferences create a reinforcing cycle: research that drops before a major conference shapes the discussions, panels, and hallway conversations that happen there. A Glasswing July report that drops in the week before Black Hat will frame what the AI security community talks about at the conference. Research that follows confirms, challenges, or extends the Glasswing findings will get more attention and more informed Q and A than it would in isolation. For practitioners, this means that attending Black Hat without having read the Glasswing July report, when it is available, means entering the highest-density AI security conversation of the year without the baseline context that most of the room will share. The Mythos Brief at decryptiondigest.com/mythos-brief will be updated with the July report findings as soon as the report is published.

Free daily briefing

Briefings like this, every morning before 9am.

Threat intel, active CVEs, and campaign alerts, distilled for practitioners. 50,000+ subscribers. No noise.

Five Questions the Report Should Answer

Five specific questions should shape how defenders evaluate the July 2026 Glasswing report. First: CVE patch status. Of the 9 confirmed Glasswing CVEs (including FreeBSD NFS RCE CVE-2026-4747, wolfSSL cert forgery CVE-2026-5194, Linux LPE, VMM escape, and V8-adjacent vulnerabilities), which have been patched by the affected vendors? Unpatched CVEs remain active exposure, and organizations running affected software need to apply compensating controls. Second: critical infrastructure findings. The Glasswing expansion explicitly targets critical infrastructure sectors. What did Mythos find in healthcare, power, and water sector partner environments? Third: CVD process scale. Has the coordinated disclosure framework scaled to handle a larger partner base, and what has the process looked like at 200+ organizations? Fourth: Claude Security update. Has the public beta patch count grown beyond 2,100+, and what does the patch acceptance rate look like from partner organizations? Fifth: new CVE disclosures. Have any of the 10,000+ findings from the initial phase completed the CVD process and received formal CVE assignment beyond the initial 9?

Subscribe to unlock Remediation & Mitigation steps

Free subscribers unlock full IOC lists, Sigma detection rules, remediation steps, and every daily briefing.

How to Follow the Report Release

Three primary channels cover the Glasswing July report release. Anthropic publishes major research disclosures at anthropic.com/research and announces them via the Anthropic blog and social channels. The NVD at nvd.nist.gov provides the authoritative record for any new CVE assignments, typically updated within days of formal assignment. The Decryption Digest publishes daily cybersecurity briefings and will cover the Glasswing July report on its publication date with practitioner-oriented synthesis. Subscribe at decryptiondigest.com to receive same-day coverage. For the most direct practitioner response to the report, Mythos Brief subscribers at decryptiondigest.com/mythos-brief receive a dedicated update email when the July report is published, covering the updated CVE status, new findings, and defensive action recommendations. The Mythos Brief update goes deeper than the daily newsletter synthesis: it includes updated defensive implications analysis for each confirmed CVE and the new disclosures.

How the Mythos Brief Connects

The Mythos Brief is the living document for Glasswing findings. The initial Brief covered all 9 confirmed CVEs with CVSS scores, affected component types, and defensive recommendations. When the July 2026 report drops, the Brief will be updated with new CVE status, updated patch guidance for any CVEs that were previously unpatched, and defensive implications analysis for any new disclosures. Mythos Brief subscribers at decryptiondigest.com/mythos-brief receive the update notification directly, with a synthesis of the changes from the July report and recommended defensive actions for organizations that may be affected by new disclosures or updated status on existing CVEs. The Brief is designed to be the preparation document for practitioners who need to understand the Glasswing findings without reading the full Anthropic technical reports.

What Defenders Should Do with the Report When It Arrives

When the Glasswing July 2026 report drops, the practitioner response follows the same framework as any major vulnerability disclosure: assess exposure, prioritize remediation, and update detections. For the CVE patch status question: check your asset inventory against the affected software list for each of the 9 CVEs and compare patch status against vendor advisories. Any organization running FreeBSD with NFS, wolfSSL, Linux systems exposed to privilege escalation, or virtualized environments should have already assessed CVE-2026-4747, CVE-2026-5194, and the Linux LPE CVE. The July report will clarify which vendor patches are available for any CVEs that remained unpatched after the initial disclosure. For new CVE disclosures: apply the same process to any new CVEs announced in the July report, using the Glasswing CVE reference sheet in the Mythos Brief as the starting point for the affected software inventory check. For critical infrastructure findings: if your organization operates in healthcare, power, or water sectors, the critical infrastructure findings section should be triaged against your specific technology stack.

The Broader Glasswing Disclosure Timeline

The Glasswing program operates on a defined disclosure timeline: vulnerability discovery, coordinated disclosure with the affected vendor, remediation development, and public disclosure after the 90-day window or when the vendor issues a patch. The initial 9 CVEs represent findings where that full cycle completed within the first 90-day window. The 10,000+ total findings include everything discovered in that window, not all of which have completed the CVD process. The July 2026 report covers findings from the June 2 expansion. Future reports will follow the same cycle: 90-day window, coordinated disclosure with expanded partner base, public report on findings that have completed the process. For defenders, this means Glasswing is not a one-time disclosure event: it is an ongoing program that will produce new CVEs and new findings on a regular cadence. Building a monitoring process for Glasswing reports, not just responding to individual CVEs, is the appropriate operational posture.

Glasswing Disclosure Tracker and Critical Infrastructure Preview

The Glasswing disclosure tracker, CVE patch status monitor, critical infrastructure findings preview, and alert setup for report release are available in the Mythos Brief. The tracker provides current patch status for all 9 confirmed Glasswing CVEs, updated as vendor advisories are published. Mythos Brief subscribers at decryptiondigest.com/mythos-brief receive notification when the July report is published and access to the updated tracker with the new report's disclosures.

Subscribe to unlock Remediation & Mitigation steps

Free subscribers unlock full IOC lists, Sigma detection rules, remediation steps, and every daily briefing.

The bottom line

The Glasswing July 2026 progress report is the next major AI vulnerability disclosure event and arrives just before Black Hat USA 2026 Briefings on August 5-6. The five questions it should answer are: CVE patch status for the initial 9, critical infrastructure findings, CVD process scale at 200+ partners, Claude Security patch count update, and new CVE disclosures from the 10,000+ findings backlog. When it drops, the practitioner response is the same as any major multi-CVE disclosure: assess exposure against the affected software list, prioritize patches for unpatched CVEs, and update detections for the new vulnerability classes. The Mythos Brief at decryptiondigest.com/mythos-brief will be updated when the report publishes, with the CVE patch status tracker, defensive implications analysis for new disclosures, and a synthesis of what changed from the initial report.

Frequently asked questions

When is the Glasswing July 2026 report?

Anthropic's Project Glasswing expanded its partner program on June 2, 2026. The 90-day window from that expansion date closes in early August 2026, which coincides with the Black Hat USA 2026 Briefings on August 5-6 in Las Vegas. The July 2026 progress report is expected before or at the close of that window. Anthropic has not confirmed a specific publication date as of July 5, 2026. Mythos Brief subscribers at decryptiondigest.com/mythos-brief receive notification when the report is published and a synthesis of the key practitioner findings.

What will the Glasswing 90-day report contain?

Based on the structure of the initial Glasswing 90-day report, the July 2026 progress update is expected to cover: an update on the total finding count (currently 10,000+ across 200+ organizations), new CVE assignments if any additional Glasswing findings have been formally disclosed, a breakdown of critical infrastructure sector findings (healthcare, power, water), the patch status of the 9 CVEs confirmed in the initial report, an update on the Claude Security public beta patch count (currently 2,100+), and the status of the expanded partner organization program. The report may also address the coordinated disclosure timeline for findings where the 90-day disclosure window has closed.

Are the 9 Glasswing CVEs patched yet?

As of July 5, 2026, the patch status of all 9 confirmed Glasswing CVEs has not been publicly consolidated in a single source. Individual CVEs can be tracked in the NVD at nvd.nist.gov and in vendor security advisories. The July 2026 Glasswing progress report is expected to provide a consolidated update on which of the 9 CVEs have been patched by the affected vendors, which remain unpatched, and whether any have been added to CISA's Known Exploited Vulnerabilities catalog. The Mythos Brief disclosure tracker, linked in the gated section, provides current-status monitoring for each of the 9 CVEs as the information becomes available.

How do I get notified when the Glasswing report drops?

Three channels reliably cover Glasswing report releases. First, Anthropic publishes major research disclosures at anthropic.com/research and announces them on the Anthropic blog. Second, the Decryption Digest publishes daily cybersecurity briefings and will cover the Glasswing report on the day it is published, with practitioner-oriented synthesis of the key findings. Subscribe at decryptiondigest.com. Third, Mythos Brief subscribers at decryptiondigest.com/mythos-brief receive a dedicated update email when the July report is published, covering the new findings, updated CVE status, and defensive implications for the Glasswing expansion.

Will the July report be presented at Black Hat?

Anthropic has not announced a formal Black Hat 2026 presentation as of July 5, 2026. The timing of the 90-day window closing near Black Hat (August 5-6) creates the possibility that Anthropic could present Glasswing findings at the conference or that independent researchers who received advance access to the findings could present related work. Even without a formal Anthropic presentation, the July report will provide context for AI security talks from independent researchers at Black Hat who have been working with the Glasswing CVE data. Following the report release, the Black Hat session finder at blackhat.com/us-26 is the best source for confirmed presentations that engage with the Glasswing findings.

What compensating controls should organizations apply for Glasswing CVEs that remain unpatched in the July 2026 report?

For Glasswing CVEs where vendor patches are not yet available, compensating controls must address the specific exploitation path for each vulnerability class rather than applying generic hardening. For the FreeBSD NFS RCE (CVE-2026-4747), the immediate compensating control is restricting NFS port access (TCP/UDP 2049 and the portmapper on 111) to authorized hosts only using firewall ACLs, eliminating the network attack surface until a patch is available. For the wolfSSL certificate forgery (CVE-2026-5194, CVSS 9.1), the compensating control is network-level certificate pinning where the application layer cannot be quickly updated, combined with monitoring for anomalous TLS session establishment patterns. For Linux LPE CVEs in the Glasswing set, seccomp-bpf profiles that restrict the syscall surface available to container and service processes reduce exploitability significantly even on unpatched kernels, as do AppArmor or SELinux policies that deny the file system paths and capabilities that LPE chains typically require. Document each compensating control in your vulnerability management platform with a defined expiration date tied to your vendor's published patch timeline so that interim controls do not become permanent configuration debt.

Sources & references

  1. Anthropic Project Glasswing 90-Day Report
  2. Anthropic Exploit Evals Report May 22, 2026
  3. CISA Coordinated Vulnerability Disclosure
  4. CISA Known Exploited Vulnerabilities Catalog
  5. NVD National Vulnerability Database

Free resources

25
Free download

Critical CVE Reference Card 2025–2026

25 actively exploited vulnerabilities with CVSS scores, exploit status, and patch availability. Print it, pin it, share it with your SOC team.

No spam. Unsubscribe anytime.

Free download

Ransomware Incident Response Playbook

Step-by-step 24-hour IR checklist covering detection, containment, eradication, and recovery. Built for SOC teams, IR leads, and CISOs.

No spam. Unsubscribe anytime.

Free newsletter

Get threat intel before your inbox does.

50,000+ security professionals read Decryption Digest for early warnings on zero-days, ransomware, and nation-state campaigns. Free, daily, no spam.

Unsubscribe anytime. We never sell your data.

Eric Bang
Author

Founder & Cybersecurity Evangelist, Decryption Digest

Cybersecurity professional with expertise in threat intelligence, vulnerability research, and enterprise security. Covers zero-days, ransomware, and nation-state operations for 50,000+ security professionals every morning.

Black Hat Giveaway

Win a $2,495 Black Hat pass.

Full-access to Black Hat USA 2026 in Las Vegas. Subscribe free to enter.

Joins Decryption Digest daily briefing. Unsubscribe anytime.

Giveaway: Black Hat USA 2026 Full-Access Pass ($2,495 value)

Details →
Daily Briefing

Subscribe to enter the giveaway

Every subscriber is automatically entered. You also get daily threat intel every morning: zero-days, ransomware, and nation-state campaigns. Free. No spam.

Already subscribed? You're already entered.

Giveaway

Win a $2,495 Black Hat USA 2026 pass.