Bessent Warns of Threat of AI-Powered Bank Account Hacks

The Treasury’s alarm reflects a broader industry realization that artificial intelligence is moving beyond a defensive tool to a potent offensive weapon. Anthropic’s Mythos model, which has already identified thousands of high‑severity vulnerabilities across operating systems and browsers, is now being positioned as a mandatory scanner for major banks like JPMorgan Chase and Bank of America. By integrating such AI‑driven assessments, financial institutions can proactively patch weaknesses before malicious actors exploit them, turning a potential liability into a strategic advantage.

Yet the same capabilities that empower defenders also lower the barrier for attackers. Large language models can automate the discovery of complex exploit chains, enabling threat actors to launch multistep intrusions at scale. This dual‑use nature transforms cyber risk from a targeted concern into an ambient exposure, where even mid‑size enterprises with uneven patching practices become viable targets. As AI accelerates the speed and breadth of vulnerability discovery, traditional security timelines become obsolete, demanding continuous monitoring and rapid response mechanisms.

For regulators and senior executives, the challenge lies in striking a balance between fostering AI innovation and safeguarding the financial ecosystem. Policy frameworks will likely evolve to mandate AI‑based security testing, while banks must invest in talent and infrastructure capable of interpreting and acting on AI‑generated insights. The coming months will test the industry’s ability to stay ahead of AI‑powered threats, making proactive adoption of tools like Mythos not just advisable but essential for maintaining systemic resilience.