ARTICLE AD BOX
China’s AI industry is edging into territory that makes U.S. officials nervous: automated cybersecurity. You can see it in the way Chinese companies keep releasing new models, sharing benchmarks, and talking up their progress. Their systems are starting to catch up with Anthropic’s Mythos, the American model everyone’s been watching for its skills in finding software flaws.
All this just cranks up the tension between Washington and Beijing. The U.S. has leaned on export controls, chip bans, and other tricks to slow China’s climb. But lately, Chinese models are throwing a wrench in that strategy. Tools that used to belong to a few Western labs are now cheaper, open, and available to just about anyone.
One name that keeps popping up is GLM-5.2, the headliner from Zhipu AI (or Z.ai). People are paying attention because it handles long bits of code, writes software pretty well, and, unlike most American models, comes with open weights. In other words, you can download it, tweak it, and run it as you please — no tight restrictions.
That’s the double-edged sword right there.
For legit defenders, a model like this can speed up code reviews, spot bugs, and patch problems faster. For hackers, the same openness means cheaper, more efficient attacks. In this field, the line between helping and hurting has always been blurry. AI is just making it almost invisible.
Security researchers have only added fuel to the fire. GLM-5.2 apparently holds its own against top U.S. models when it comes to finding vulnerabilities. It’s not a drop-in replacement for Mythos in every case, but the gap is closing much faster than anyone expected.
Another big signal came from 360 Security Technology, a major player in China. At a tech event in Beijing, their founder Zhou Hongyi rolled out Tulongfeng, a system meant to take on Mythos, plus Yitianzhen, which automates defense and incident response.
360 says Tulongfeng discovered thousands of bugs, with over 100 confirmed by authorities. Zhou admitted they’re still behind the best U.S. systems, but he insisted China can’t wait for perfection — they need their own cyber shields now.
You see the broader strategy here. Instead of waiting for one perfect model, Chinese companies are mixing AI with big security databases, automation, and expert teams. They want a whole operating system for attack and defense, not just an answer machine.
It’s all happening while things are getting messier politically. Anthropic claims Alibaba-linked groups tried to copy its Claude model by scraping conversations at massive scale. Alibaba brushed off the accusation, but it’s just one piece of a bigger fight over AI access and digital security.
The U.S. hates the timing. Even with restrictions and export bans, open models and data leaks keep spreading advanced capabilities. The big question is, once this knowledge gets out, can you really put the genie back in the bottle?
Honestly, probably not.
That doesn’t make safety a lost cause. Tools like account bans, telemetry, and cloud monitoring still matter for managed systems. But with fully open models, things get tougher. You can block users on your platform, but you can’t track every copy that runs on someone else’s hardware.
It’s not like AI will make hackers obsolete overnight. Real attacks need more than good code — you still need people who know how to target and persist. The big change is scale. AI tools mean both defenders and attackers can do more, faster.
That’s why it’s not a simple open-versus-closed debate. Closed models keep things centralized, often in American hands. Open ones can help smaller players and speed up innovation. Both have their dangers. The challenge isn’t freezing the tech, but managing how it’s used.
Next, the U.S.–China race comes down to three things: raw model power, rules for safe use, and trust between teams. Companies will keep tightening access. Governments will chase new policies. Security people everywhere will scramble to keep up.
Here’s the real takeaway: In AI, any edge is temporary. The winners won’t just be the ones who shut others out. They’ll be the ones who keep building better defenses, audit openly, and set some ground rules before the next leap happens.




English (US) ·