OpenAI rolls out GPT‑5.4‑Cyber

OpenAI has started rolling out GPT-5.4-Cyber, a version of its flagship model tuned for defensive cybersecurity work and limited to vetted users. (openai.com) The company announced the model on Tuesday, April 14, 2026, and said the first users will be security vendors, organizations, and researchers approved through its Trusted Access for Cyber program. Reuters reported the release comes a week after Anthropic announced Claude Mythos Preview on April 7. (money.usnews.com) OpenAI said it is expanding Trusted Access for Cyber to thousands of verified individual defenders and hundreds of teams that protect critical software. The company said higher verification tiers will unlock more capable systems, and the highest tier can request GPT-5.4-Cyber. (openai.com) Cybersecurity is the work of finding and fixing weaknesses in software before attackers exploit them. OpenAI said GPT-5.4-Cyber is “cyber-permissive,” meaning it is tuned to allow more security research tasks for approved users instead of blocking them like a general consumer chatbot might. (openai.com) OpenAI said it is preparing for “increasingly more capable models” over the next few months and wants to pair stronger systems with tighter controls such as know-your-customer checks and identity verification. Axios reported the company is using a tiered access plan rather than offering one broad product to everyone. (openai.com, (axios.com)) That puts OpenAI on a different release path from the usual software launch where one model goes on sale to all customers at once. Reuters said the company launched Trusted Access for Cyber in February, and the new tiers tie more powerful capabilities to more verification. (money.usnews.com) The backdrop is a race between artificial intelligence companies to show their models can help defenders faster than attackers can misuse them. Reuters said Anthropic’s Mythos program is also restricted to select organizations and that Anthropic says the model has found “thousands” of major vulnerabilities in operating systems, web browsers, and other software. (money.usnews.com) OpenAI framed this launch as part of a longer security push. The company said it has run a Cybersecurity Grant Program since 2023, added cyber-specific safeguards in 2025, and launched Codex Security earlier in 2026 to help identify and fix vulnerabilities at scale. (openai.com) For now, the company is not treating GPT-5.4-Cyber like a mass-market chatbot release. It is treating it like a controlled security tool, with access decided by verification level, customer type, and whether the user is defending real systems. (openai.com, (axios.com))