The Government of India has constituted a high-level panel to assess potential systemic threats to the financial sector from Mythos, a frontier AI model developed by Anthropic. Chaired by State Bank of India (SBI) Chairman CS Setty, the committee will evaluate AI-born risks and suggest strategic technology investments to safeguard the national banking infrastructure. The decision follows a high-level review by Union Finance Minister Nirmala Sitharaman and Minister for Electronics and Information Technology Ashwini Vaishnaw.
The Rise of “Mythos” and the Cybersecurity Challenge
Anthropic, a leading AI safety and research company, announced the Mythos model in April 2026. Unlike previous generative models, Mythos is designed with advanced reasoning and autonomous coding capabilities that allow it to identify zero-day vulnerabilities. These are software flaws unknown to developers that have not yet been patched. While intended for defensive security research under Project Glasswing, the dual-use nature of the technology has raised concerns that it could be weaponized to launch large-scale cyberattacks against critical financial systems.
The banking sector is particularly vulnerable due to its reliance on complex legacy systems and interconnected digital networks. The ability of an AI model to discover and exploit weaknesses at machine speed poses a systemic risk that traditional cybersecurity protocols may struggle to contain. The government has noted that the speed and scale of AI-driven threats necessitate a proactive and coordinated institutional response.
Mandate of the CS Setty-led Committee
The committee is led by C.S. Setty, who assumed office as the Chairman of the State Bank of India (SBI) in August 2024. As the current head of the Indian Banks’ Association (IBA), Setty brings over 35 years of experience in various banking verticals, including technology and international operations. The IBA, which was established in 1946 and is headquartered in Mumbai, serves as the premier representative body for the Indian banking industry.
The high-level panel has been tasked with several critical responsibilities to ensure the security of India’s financial assets:
- Systemic Risk Assessment: Evaluating how advanced AI models like Mythos could impact the stability of the banking sector.
- Mitigation Strategies: Developing policy and regulatory frameworks to protect against AI-driven exploits.
- Investment Identification: Pinpointing specific areas where banks must increase their technological investments to stay ahead of emerging threats.
- Defensive AI Exploration: Investigating the use of artificial intelligence to autonomously detect and neutralize cyber-attacks before they cause damage.
Strengthening India’s Financial Resilience
The State Bank of India (SBI), which was established in 1955 and is headquartered in Mumbai, is the nation’s largest public sector lender. Its prominent role in the newly formed committee highlights the government’s commitment to a unified national response. To counter the precision of models like Mythos, the financial sector is being encouraged to move toward a zero-trust architecture, where every access request is strictly verified regardless of its origin.
Strategic investments identified by the panel are likely to focus on upgrading core banking solutions and establishing real-time threat intelligence sharing platforms. The Indian Banks’ Association (IBA) will facilitate a coordinated mechanism for banks to share data on suspicious activities, ensuring a collective defense. This strategy is designed to protect the entire ecosystem, ranging from major public sector banks to smaller rural and cooperative financial institutions.
Regulatory Oversight and Inter-Agency Coordination
The collaboration between the Ministry of Finance and the Ministry of Electronics and Information Technology (MeitY) reflects a comprehensive approach to managing frontier technological risks. A critical partner in this endeavor is the Indian Computer Emergency Response Team (CERT-In). Established in 2004 and headquartered in New Delhi, CERT-In is the national nodal agency for responding to computer security incidents. Banks have been mandated to report any anomalies or suspicious cyber activities to this agency without delay.
Union Finance Minister Nirmala Sitharaman has pointed out that while the Indian financial system possesses strong security protocols, the emergence of AI-driven tools requires a shift in strategy. The committee’s findings will likely influence future regulatory frameworks governing the adoption of AI in the financial services industry. This inter-agency coordination ensures that technological advancement does not come at the cost of national economic security.
Key Takeaways
- The Government of India has established a high-level panel chaired by C.S. Setty, the Chairman of the State Bank of India (SBI), to assess risks from the Mythos AI model.
- Mythos is a frontier AI model developed by Anthropic that possesses the capability to autonomously discover zero-day software vulnerabilities.
- The Indian Banks’ Association (IBA), which was founded in 1946 and is based in Mumbai, will facilitate threat intelligence sharing between banks.
- The State Bank of India (SBI) was established in 1955 and remains the largest public sector bank in the country.
- CERT-In, the national agency for responding to cybersecurity incidents, was established in 2004 and operates under MeitY.
- The panel will focus on identifying strategic technological investments and exploring the role of defensive AI in protecting financial infrastructure.
