OpenAI expands Daybreak program, updates GPT-5.5-Cyber, lands partners

OpenAI rolled out an updated GPT-5.5-Cyber model, launched an initiative to patch vulnerabilities and rolled out a partner program as it expanded its Daybreak cybersecurity initiative.

The OpenAI moves come as Anthropic's Fable 5 and Mythos 5 remain sidelined. Meanwhile, the Five Eyes group of countries issued a stark warning about AI's cybersecurity's impact. Five Eyes in a statement said:

"Cyber risk can no longer be treated as a purely technical issue. This is a core business risk and leadership responsibility. Boards and executives should ensure cyber resilience is in place and works under pressure. It is not enough to have controls. Leaders must be confident those controls will perform during a real incident. This requires reassessing long-standing trade-offs and using AI deliberately to strengthen defense – not just improve efficiency."

The consensus is that the Mythos moment has changed the pace of cybersecurity, architectures and the types of threats enterprises will face. Multiple security vendors discussed how AI is changing cybersecurity on their earnings conference calls. The Mythos moment is common vernacular in cybersecurity now.

• CrowdStrike delivers strong Q1, ups outlook
• Palo Alto Networks Q3 strong as CEO says Mythos boosted demand
• JPMorgan Chase, Goldman Sachs on Anthropic's Mythos, AI cyber risks
• Claude Mythos and the New Cybersecurity Operating Model
• Claude Mythos and the Future of Enterprise Security
• Fable 5 and the Shift From Model Capability to Capability Governance
• Anthropic’s Claude Fable 5, Mythos 5: What you need to know

For OpenAI, the new world cybersecurity order can be a big opportunity. Here's what OpenAI rolled out in its Daybreak expansion:

• An update to the Codex Security plugin that includes the lessons from internal and customer usage of models. The update is designed to accelerate discovery and patching vulnerabilities.
• GPT-5.5-Cyber, a full release following a permissive-only preview. The release is limited to select partners and is an improvement on GPT-5.5.
• The Daybreak Cyber Partner program, which includes a bevy of vendors, consulting companies and integrators including IBM, Accenture, PwC, Cognizant, Elastic, Cisco, Palantir and others.
• A program called Patch the Planet, which aims to rally the open source community with help from Trail of Bits and Hacker One, to fix widely used open source applications.

What Daybreak is hoping to do is speed up cybersecurity and make it more real-time. OpenAI said:

"Vulnerability reports, on their own, do not protect anyone. The value comes from validating the issue, understanding its impact, developing and testing a patch, coordinating disclosure, and helping teams deploy the fix. We are investing alongside our partners to improve these latter steps, in order to turbocharge defenders and convert model capability into real-world risk reduction.

Frontier defensive capabilities should not be concentrated in the hands of a few. Software touches all aspects of life, from critical infrastructure to business applications and government networks. As AI changes the pace of vulnerability discovery, defenders everywhere need democratized access to these models to find, fix, and protect their infrastructure before attackers can identify and abuse these flaws."