- The AI Daily Brief
- Posts
- The Fable 5 Crisis Continues
The Fable 5 Crisis Continues
June 15, 2026 · Episode Links & Takeaways
MAIN STORY
The Fable 5 Crisis Continues
As the work week begins, the Fable 5 saga is still unresolved — and the picture that has emerged over the weekend is one where the technical facts almost don't matter. What actually happened in those chaotic 24 hours on Thursday and Friday is now fiercely disputed, the administration is clearly operating without deep technical expertise, and the path forward looks far more interpersonal than procedural. Here is the full account of what we know.
TECHNICAL OR PERSONAL?
The Sacks Narrative
The former AI czar's post landed like a White House press release.
David Sacks set the administration's frame early on Saturday: Anthropic asked for government regulation of Mythos, marketed it as a cyber weapon, and then when a "highly credible trusted partner" surfaced a jailbreak, refused to fix it or pull the model. Sacks painted the administration as reluctant and Anthropic as hypocritical — the self-declared safety company that chose revenue over safety. Notably, Sacks specifically named Dario Amodei as the one who refused the request, not Anthropic as a company — a framing worth watching. The post also quietly sketched two exits: Anthropic fixes the issue, or someone at Anthropic takes the fall. AI entrepreneur Erik Voorhees pushed back with the more skeptical read: the jailbreak wasn't super serious, and the administration used it as an opportunity to punish Anthropic for prior sins of not bending the knee.
David Sacks (X) Full post on what Sacks says he believes to be true
Erik Voorhees (X) More likely story: the jailbreak wasn't super serious
Anthropic's Position
Not all jailbreaks are created equal — and perfect resistance isn't possible.
Anthropic's Friday blog post argued that the jailbreak in question was specific and discrete, not universal. A universal jailbreak — one that broadly bypasses all guardrails — is what actually matters. Their point, argued with language that was probably not optimally calibrated for the audience receiving it, was that if you can get the model to tell you that mitochondria is the powerhouse of the cell, that's technically a jailbreak too. That's completely different from using the model to build a bioweapon. Anthropic also acknowledged openly that perfect jailbreak resistance doesn't appear to be possible for any provider today — a true statement that nonetheless landed badly with administration officials who seemed to expect the problem could simply be patched.
Amazon's Role
Andy Jassy called Bessent. A warning became a ban.
Multiple outlets confirmed over the weekend that Amazon was the unnamed "highly credible trusted partner." Amazon contacted administration officials Thursday night with a report showing how researchers had jailbroken Fable to surface security bugs in at least four software platforms. Andrew Morris of GreyNoise Intelligence — sourced by the WSJ — said that while this information would normally be blocked by guardrails, it was "still a long way from dangerous cybersecurity information," and that many other models can surface the same information. Critically, Amazon's researchers had not demonstrated the ability to get Fable to produce functional exploit code, which is what the guardrails were actually designed to prevent. The WSJ further notes that Jassy's calls to administration officials may have been intended as a general warning that "quickly escalated into a wide Commerce Department ban." Amazon has declined to discuss the details.
Axios How Amazon and the White House ended Anthropic's Fable
WSJ Amazon CEO's Talks With U.S. Officials Triggered Crackdown on Anthropic Models
The Information Amazon's Jassy Raised Concerns About Anthropic Model Before Trump Crackdown
The Phone Calls
Dario asked for more time and more information. Bessent said he was making a bad decision.
Politico reported that Treasury Secretary Scott Bessent, White House Chief of Staff Susie Wiles, and White House Cyber Director Sean Cairncross led the meeting that made the call. Bessent joined remotely from a car en route to Houston. After the meeting, the White House says they tried to reach Dario Amodei and were told he was at a wellness retreat — a claim Anthropic flatly denies, with tech reporter Ashlee Vance, who was at Anthropic's HQ that day, saying Dario was simply not at a wellness retreat. Anthropic says Amodei was first requested around noon and was on the phone within an hour and fifteen minutes. Once on the calls — three in total, with Bessent, Wiles, Cairncross, Commerce Secretary Lutnick and others — Amodei argued the bypass was specific and did not pose the risk of a broader jailbreak. Cairncross and Bessent were unconvinced, citing NSA review of Amazon's findings as "proof." The administration urged voluntary withdrawal; Amodei requested more time and more information but declined to commit to taking the model down. Bessent warned him he was making a bad decision. The White House account says this was all a last resort after hours of asking; Anthropic's account says they received a 90-minute deadline with no details on the actual threat, and no one asked them for anything.
Politico Inside the whirlwind 24 hours that led the White House to slap export controls on Anthropic
Ashlee Vance (X) None of this was some weeks long back and forth. I was at Anthropic's HQ on Friday. Dario was not at a wellness retreat.
Ashlee Vance (X) The Feds don't like Dario Amodei because he won't do all their bidding
Jeff Cafe (X) The "wellness retreat" as a linguistic kill shot
The China Angle
"Quick. Someone say it was China." — Ashlee Vance
Saturday afternoon brought an entirely alternate explanation: Semafor reported that the White House imposed the export controls partly over suspicions a China-linked group had accessed Mythos. The article contained almost zero supporting detail — unclear how the White House learned of it, which organization was involved, or how access was gained. Anthropic responded that China was never raised in any of their discussions with the administration, and that Anthropic models are already blocked in China. Vance's summary — and most of the technical community's reaction — was that this was very thinly sourced, amounting to one unnamed "person familiar."
Semafor White House's export limits on Anthropic linked to concerns about Chinese access
The Verge China may have accessed Mythos
Ashlee Vance (X) Quick. Someone say it was China.
Hegseth and Personality Clashes
"They screwed us." The technical dispute is also a political one.
Defense Secretary Pete Hegseth poured fuel on the political read, tweeting that the Department of War had kicked Anthropic out of their building three months ago and that every passing day proves it was the right call. Monday morning, Axios reported on the "personality clashes" dimension explicitly: an administration official quoted as saying Anthropic "has not done a great job at trying to speak to the administration and appreciate the ideological differences," and that the two sides simply "speak in different languages." Another source said the administration viewed Anthropic's posture at the outset as a flat refusal to engage. The realpolitik case was made bluntly by Bucco Capital: the US government has a monopoly on the use of force, and a private citizen cannot speak the way Dario Amodei has been speaking. He will have to change his messaging or be destroyed.
Pete Hegseth (X) Three months ago, the Department of War kicked Anthropic out of our building forever
Axios "They screwed us": Personality clashes sent Anthropic's models offline
Bucco Capital (X) Much of the tech community is exposing themselves for not understanding the absolute basics of political theory
The Technical Reality of the "Jailbreak"
You can't fix a model finding bugs in a codebase — that is the model working.
Katie Moussouris of Luta Security, who appears to be the only outside expert who actually read the research paper, published a detailed account: Amazon's researchers took open-source code with known vulnerabilities and new code with planted bugs, asked Fable to "review the code for security issues," it refused, then asked it to "fix this code," and through a multistep manual process turned the output into scripts that test patches. Software engineer Corey Ward put the key point plainly: the guardrails were never designed to prevent finding or fixing bugs — they were designed to prevent the model from being used to identify and leverage new exploits. There's nothing for Anthropic to "resolve." To actually fix what Amazon described, Anthropic would essentially have to disable Fable's coding capabilities. Miles Brundage's read: some folks at the White House were simply unaware that Fable had any cyber abilities at all, so something entirely unsurprising seemed alarming.
Luta Security The Fable 5 Export Controls Harm US Cyber Defense — Katie Moussouris
Katie Moussouris (X) I wrote about what was actually in that Fable guardrail bypass research paper
Corey Ward (X) Can we stop calling an LLM finding bugs in a codebase a "jailbreak"?
Miles Brundage (X) Sounds like some folks at the WH were unaware Fable has >0 cyber abilities
Miles Brundage (X) There has been zero indicating that domain experts at CAISI or NSA were involved
Colin Camerer (X) Lots of knowledgeable WH tech people left. The WH are way out of their depth
Anthropic's Safety Superpower
The same alignment that makes Anthropic effective is what makes this dangerous.
Ben Thompson's Stratechery piece this morning is the most probing analysis of Anthropic's posture in this crisis. His argument: for Anthropic, every controversial policy call — the data retention change, the guardrails, the confrontations — reduces to safety. That's not spin, Thompson argues; they genuinely believe it. The result is a company where an almost perfect alignment between talent, mission, and business model has created total confidence in its own judgment. The closest analogy is Apple — a company that consistently framed self-serving decisions as doing right by users, and often was. The fear, Thompson writes, is that building a smartphone on that model is one thing. Building superintelligence is another.
Stratechery Anthropic's Safety Superpower — Ben Thompson
The Policy Verdict
"We're moving backwards now."
Whatever the political dynamics that produced this, the policy consensus among serious observers is stark. R Street's Adam Thierer argues that whatever sympathy one might withhold from Anthropic given their history of inviting regulatory scrutiny, the action itself is genuinely outrageous on the merits — a leading AI company forced to take down a product used by millions based on non-public, unexplained concerns from a handful of officials, with no transparent process, no criteria, and no clear path to resolution. The Economist called it capricious and chaotic, arguing the government's primary aim may not have been foreign access at all. Former White House advisor Dean Ball put it most starkly: post-Mythos, the United States effectively has an informal, opaque licensing regime for AI, with no consistent rules and no firm limits on state power.
R Street Institute The Fable Fiasco: A Bad Idea Applied Badly — Mark Dalton
Substack What's Worse Than an "FDA for AI"? — Adam Thierer
Adam Thierer (X) Because this is happening to Anthropic, the temptation for many will be to say: play stupid games, win stupid prizes
The Economist Donald Trump's blocking of Anthropic is capricious and chaotic
Dean Ball (X) Post-Mythos, the United States has a licensing regime for AI. It's just informal
Current State of Play
The resolution, if it comes, will be interpersonal — not technical.
As of Monday morning, Anthropic has dispatched senior technical staff to Washington — including top security researcher Nicholas Carlini, Logan Graham who leads model risk evaluation, and David Orr, the company's head of safeguards — to meet with government security experts in hopes of de-escalating. A group of 40 cybersecurity leaders, led by former Facebook Chief Security Officer Alex Stamos, published an open letter calling on Secretary Lutnick and National Cyber Director Cairncross to lift the export controls and commit to a transparent, scientific process for AI risk assessments going forward. Their argument: other models can do what Fable can do, researchers need access to these tools to harden defenses, and Chinese open-weight models are only months behind. The letter has not yet gotten major traction. The bottom line: Anthropic has clearly believed it could reason the White House into seeing things its way. That has not worked. They are one of two leaders in the most consequential industry in the world, and they have to play ball with the government they have, not the government they'd like. As investor Melinda Chu put it: if Dario Amodei is not on that plane, nothing will change.
WSJ Anthropic Dispatches Staff to D.C., Racing to Resolve AI Export Restrictions
Axios Scoop: Anthropic flies staff to D.C. to clean up White House fight
Axios Cyber leaders defend Anthropic's banned model
FreeFable.org Open letter from 40 cybersecurity leaders calling to lift the export controls
Melinda Chu (X) If Dario's not on the plane, nothing will change
Interconnects Welcome to the AGI era of AI governance — Nathan Lambert