Anthropic
Why the Claude Fable 5 jailbreak wasn't really about Claude
The US switched off one AI model over a security flaw — but it turns out nearly every big model had the same one. Here's what happened, in plain terms.
The answer
The Fable 5 jailbreak wasn't unique — Anthropic later found the same trick worked on other top models.
If you followed the news in June, you might have heard that the US government suddenly pulled one of Anthropic's most powerful AI models, Claude Fable 5, offline. It sounded like Claude had a scary, one-of-a-kind flaw. The reality that emerged a couple of weeks later is more interesting — and a bit more worrying: almost every leading AI model had the same weakness. Here is what happened and why it matters to you.
First, what's a jailbreak?
Every serious AI model has safety rules baked in — things it is trained to refuse, like helping someone find and exploit security holes in software. A 'jailbreak' is a clever prompt that talks the model past those rules. In this case, researchers at Amazon found a jailbreak that got Claude Fable 5 to identify software vulnerabilities and, in one instance, produce demonstration code for an exploit. That is exactly the kind of capability governments worry about, so the reaction was fast.
Why the US pulled Fable 5 offline
Because of Amazon's finding, the administration used export controls to take Claude Fable 5 and its sibling Mythos 5 offline on 12 June. Anthropic reportedly got very little notice, and the two models stayed dark for more than two weeks while the company and the government worked out how to bring them back safely. For a while it looked like a Claude-specific problem.
Fortune reported that restoring access to Anthropic's most powerful models signalled a necessary truce with the US government, ending a tense standoff that started with the cyber-security concern.
The twist: everyone had the same flaw
While Fable 5 was offline, a group of cybersecurity experts wrote an open letter to the administration saying the flaw was not unique to Anthropic — other top models had it too. Then Anthropic's own investigation, reported in early-July coverage, confirmed exactly that. The same bypass worked on Claude Haiku 4.5, Sonnet 4.6, Opus 4.6, Opus 4.7 and Opus 4.8, and also on OpenAI's GPT-5.4 and GPT-5.5 and Moonshot's Kimi K2.7 — eight frontier models in total.
Axios's behind-the-scenes account of how the world's top AI models were revived described the fixes Anthropic put in place to satisfy the government and get Fable 5 back online.
How Anthropic fixed it
To bring its models back, Anthropic did three practical things: it trained a new safety 'classifier' — basically a filter — to catch and block this specific jailbreak; it published a draft framework for rating how serious a jailbreak is; and it opened a HackerOne bug-bounty programme so outside researchers can report cyber jailbreaks and get rewarded. Those are shared-defence tools, and they only really work if the whole industry uses them. That is the honest lesson here: because the weakness was industry-wide, switching off a single company was never going to fix it — better shared standards will.
So what does this mean for you, practically? First, don't read 'Claude had a jailbreak' as 'Claude is uniquely unsafe' — the same weakness sat in models from OpenAI and others, and the labs are now racing to patch a shared problem. Second, the fixes Anthropic rolled out — a new filter, a severity-rating system, and a public bug-bounty inviting researchers to report holes — are the kind of grown-up security practices you'd want from any tool you rely on, so they're a reassuring sign, not a worrying one. Third, this is a reminder that AI safety is a moving target: models get patched, new tricks get found, and that back-and-forth is normal, the same way your phone gets security updates. The healthy takeaway isn't fear; it's that the whole industry is being pushed toward shared standards, which is how these systems actually get safer over time.
Frequently asked questions
Was the jailbreak unique to Claude?
What is a model jailbreak, simply put?
Why was only Claude taken offline?
How did Anthropic bring the models back?
Does this affect open-source AI models too?
Sources
- How the world's top AI models were revived — Axios, 3 July 2026
- Anthropic restoring access to its most powerful AI models signals a necessary truce with the U.S. government — Fortune, 1 July 2026
- Trump restrictions on private AI models turn attention to open source — The Hill, 30 June 2026