IMF Chief Urges Global Institutions to Unite Against Cybersecurity Threats

IMF Managing Director Kristalina Georgieva issued a stark warning Friday that the global financial system is dangerously exposed to AI-driven cybersecurity threats, calling on central banks and key financial institutions worldwide to coordinate defenses before vulnerabilities are weaponized at scale.

"The risks have been growing exponentially," Georgieva said in an interview set to air Sunday on "Face the Nation with Margaret Brennan," adding that the world currently lacks the ability "to protect the international monetary system against massive cyber risks."

Georgieva said key financial institutions, including central banks, need to "work together" and be "very attentive" in managing the risks of cyberattacks. "It is an issue that easily can present itself in other parts of the world, and that is why we need people to cooperate," she said.

Her remarks landed as Washington was already in emergency mode. Federal Reserve Chair Jerome Powell and Treasury Secretary Scott Bessent met with the heads of major U.S. banks Tuesday to discuss the cybersecurity risks posed by Anthropic's new Mythos model, which the company rolled out this week in a limited capacity over concerns that hackers could exploit its capabilities. JPMorgan's Jamie Dimon was the only major banking CEO who could not attend.

The bank heads were already in Washington, D.C., for a Financial Services Forum board meeting when a special gathering was called to discuss Mythos. The gathering at Treasury headquarters signals that AI safety concerns have escalated from technical discussions to financial system-level responses.

The alarm centers on what Mythos has already demonstrated it can do. Anthropic warned that "Mythos Preview has already found thousands of high-severity vulnerabilities, including some in every major operating system and web browser," and cautioned that the fallout "for economies, public safety, and national security — could be severe." Among the vulnerabilities Mythos surfaced was a 27-year-old bug in OpenBSD that survived five million passes by automated testing tools.

The threat is particularly acute for banks whose core infrastructure runs on legacy code. Many of the largest U.S. banks still run core systems on legacy code dating back decades, meaning a single breach at a systemically important institution could cascade through the entire financial system.

Georgieva's call for institutional unity adds the IMF's weight to what is rapidly becoming the most urgent systemic risk dialogue since the 2008 financial crisis. "Yes, we are concerned. We are very keen to see more attention to the guardrails that are necessary to protect financial stability in the world of AI," she said. With a model capable of finding vulnerabilities that decades of human security auditing missed, the window to build those guardrails may be narrowing faster than policymakers anticipated.