OpenAI launches GPT‑5.4‑Cyber

Cybersecurity is the work of finding and fixing digital weak spots before attackers exploit them. On April 14, OpenAI said it built a new version of GPT‑5.4 for that job and limited it to vetted defenders. (openai.com) OpenAI said GPT‑5.4‑Cyber is a fine-tuned variant of GPT‑5.4 that is “cyber-permissive,” meaning it is more willing to help with legitimate security tasks that ordinary models often refuse. The company said those tasks include advanced defensive workflows and binary reverse engineering, which lets researchers inspect compiled software without source code. (openai.com, 9to5mac.com) The release is tied to OpenAI’s Trusted Access for Cyber program, or TAC, which the company introduced in February 2026 with identity checks for individuals and partnership arrangements for organizations. OpenAI said on April 14 that it is expanding TAC to “thousands” of verified individual defenders and “hundreds” of teams that protect critical software. (openai.com, helpnetsecurity.com) Not everyone in TAC gets the model. OpenAI said GPT‑5.4‑Cyber is available only to users in the highest tiers and to applicants who complete additional authentication to prove they are legitimate cybersecurity defenders. (openai.com, 9to5mac.com) That gatekeeping reflects how these systems work. A model that can help a defender analyze malware or spot a software flaw can also help an attacker search for the same flaw, so companies are trying to separate defensive use from public access. (openai.com, cnet.com) OpenAI said GPT‑5.4‑Cyber arrives as it prepares “increasingly more capable models” over the next few months. In its March 5 system card for GPT‑5.4 Thinking, the company said GPT‑5.4 was its first general-purpose model with mitigations for “High capability in Cybersecurity.” (openai.com, openai.com) The base model underneath this release is already one of OpenAI’s top professional systems. When OpenAI introduced GPT‑5.4 on March 5, it said the model had native computer-use features in Codex and the application programming interface, plus up to 1 million tokens of context. (openai.com, developers.openai.com) The timing also puts OpenAI into a fast-moving contest over security-focused artificial intelligence. Reuters reported that OpenAI announced GPT‑5.4‑Cyber one week after Anthropic unveiled Mythos, another restricted cyber model. (reuters.com, openai.com) For ordinary ChatGPT users, the immediate change is simple: there is none. OpenAI has kept GPT‑5.4‑Cyber out of the standard ChatGPT lineup for now and is using the restricted rollout to test the model with verified security professionals before any broader decision. (cnet.com, help.openai.com)