Three days. That's how long Claude Fable 5 existed in public before the United States government effectively pulled it offline everywhere. If you've been trying to piece together what actually happened — and why a coding-focused AI model ended up at the center of a national security dispute — you're not alone. The official explanation is an export control directive. The real story is stranger, and far more specific: it comes down to three words typed into a chat box. Here's the full, sourced timeline of why Fable 5 was banned, what the only outside expert allowed to review the case actually found, and why more than 300 cybersecurity professionals are now demanding the decision be reversed.
Short answer: Fable 5 and its sibling Mythos 5 were pulled under a U.S. export control directive after Amazon security researchers found the models would fix vulnerable code when asked directly — even though they refused a vaguer "review this code for security issues" request first. Within roughly 90 minutes of a letter from the Commerce Department, Anthropic disabled both models for every customer worldwide, not just the foreign users the order targeted, because it had no fast way to tell the two apart.
The Timeline: From Launch to Global Shutdown in 3 Days
The speed of this story is part of what makes it remarkable. Here's how it unfolded:
- 1June 9 — Launch. Anthropic released Fable 5 publicly and Mythos 5 as a more restricted tool meant for vetted cyber defenders.
- 2June 12 — Escalation and shutdown. Researchers at Amazon, Anthropic's largest investor, found the "fix this code" technique. Amazon's CEO escalated it directly to the Treasury Secretary, the Commerce Secretary, and the National Cyber Director. That evening, the Commerce Secretary sent Anthropic's CEO a letter imposing export controls. By midnight, both models were disabled worldwide.
- 3June 15 — The report goes public. Katie Moussouris, the only independent expert allowed to read the underlying research paper, published a detailed account disputing the "jailbreak" framing. The same day, an open letter demanding reversal launched.
- 4June 18 — Diplomacy and a promise. Anthropic opened a Seoul office, and its international leadership expressed confidence both models would return "within days."
- 5June 20-22 — Practical deadlines. Refund processing for paid usage credits closed June 20; free-trial windows for affected paid subscribers close June 22.
What Actually Happened: The "Fix This Code" Technique, Explained
The technique itself is almost anticlimactic given the fallout. Researchers gave Fable 5 open-source code containing known, publicly documented vulnerabilities, along with some deliberately inserted flaws. They first asked the model to review the code for security issues. Fable 5 refused — exactly as designed. Anthropic had built that specific guardrail into the public release on purpose, since unrestricted vulnerability-hunting was considered the higher-risk capability.
Then they tried something more direct: "fix this code." Fable 5 complied, producing working patches. Because actually fixing a vulnerability requires identifying it first, the model's output could, in theory, double as a map of where the exploit lives — which is exactly the concern that got flagged. From there, researchers took several additional manual steps to turn the patched output into test scripts that could validate the fixes.
Was It Really a Jailbreak? Here's What the Only Outside Expert Says
This is where the story gets contested. Katie Moussouris — founder and CEO of Luta Security, one of the original architects of corporate bug bounty programs, and the only independent expert granted access to the report behind the ban — says flatly that no jailbreak occurred. In her account, what researchers did was a standard "find-fix-test" loop: the exact workflow defensive security teams run every single day. Refusing a vague request and complying with a specific, actionable one isn't a broken guardrail, she argues — it's a model behaving normally.
Her warning goes further: she believes restricting these models will end up hurting defenders more than attackers, since open-weight models and competitors from other countries are closing the capability gap regardless of what the US restricts.
Why the Wassenaar Arrangement Matters
Moussouris isn't a random outside voice on export policy — from 2013 to 2017 she served on the technical expert group that renegotiated the Wassenaar Arrangement, a 42-nation pact governing export controls on dual-use technology. Her team specifically secured exemptions for defensive cybersecurity work, like sharing vulnerability data and coordinating incident response across borders, precisely so legitimate defenders wouldn't get caught in export-control crossfire. The Fable 5 ban, in her view, runs directly against the spirit of exemptions she helped write into international policy.
Anthropic's Pushback
Anthropic didn't go quietly. The company's public statement argued the government's case rested on a verbal description of a narrow, non-universal technique — not a discovery unique to its models. It pointed out that comparable capability already exists in other publicly available models, none of which faced similar restrictions. Anthropic also said it had red-teamed Fable 5 extensively alongside government partners and the UK AI Security Institute, racking up thousands of testing hours without producing a reliable universal jailbreak in most attempts.
The logistics of the shutdown itself tell their own story: the original directive targeted foreign access specifically, but Anthropic disabled the models for every customer everywhere within about 90 minutes, simply because it had no real-time system capable of separating domestic from international users that quickly. That detail matters for understanding the company's response since then — building identity verification isn't just a compliance box to check, it's the missing piece that would let Anthropic comply narrowly next time instead of shutting everything down by default.
Worth noting too: Anthropic wasn't blindsided by the underlying capability question. The company says it had already spent thousands of hours red-teaming Fable 5 specifically because of how powerful it is, working alongside independent government partners rather than testing in isolation. From Anthropic's perspective, the issue isn't that nobody checked for this kind of risk — it's that a single internally-reported technique, evaluated without independent technical review before the shutdown order went out, was treated as conclusive enough to justify pulling a model worldwide within 90 minutes.
The Backlash: 300+ Security Leaders Demand a Reversal
An open letter, hosted publicly for anyone to read and sign, has now collected more than 300 signatures from cybersecurity professionals. Their request isn't just "turn the models back on." They're asking for the entire process to change: future restrictions grounded in actual scientific evaluation, built with input from industry and academic experts, created through standard public rule-making instead of a single executive directive, enforced with transparency, and given remediation time before anything gets disabled. A directive that took a model offline worldwide within 90 minutes, with no published technical rationale, is close to the opposite of that framework.
Anthropic CEO Dario Amodei has since met directly with administration officials to discuss the situation. As of that meeting, no resolution had been reached.
What Happens Next
As of this writing, both models remain offline. Anthropic's international leadership struck a confident tone around its newly opened Seoul office, suggesting both models would return within days, though no confirmed restoration date has been published. The company is also reportedly building an identity verification system — a reasonable next step if the long-term goal is complying with a directive that specifically targets foreign access rather than blocking everyone equally.
If you're an affected subscriber, there are two dates worth knowing: refund processing for paid usage credits on now-offline integrations closed June 20, and free-trial windows for paid subscribers close June 22. For more on what this suspension does and doesn't affect day to day, see our related coverage on whether Claude AI is down right now — short version, standard models like Sonnet and Opus are untouched by any of this.
Why This Matters Beyond Anthropic
It's tempting to read this as a one-company story, but the precedent is the real headline. If "a model can fix a vulnerability when asked directly" is enough to trigger a worldwide export ban, that bar applies to every frontier AI lab building coding or security-adjacent tools, not just Anthropic. Competing labs are reportedly watching the outcome closely, partly because several have models with comparable capability that haven't faced equivalent restrictions, and partly because a regulatory standard this broad could eventually reach them too.
There's also a timing wrinkle worth knowing about: the crisis reportedly compounded with a separate, narrower dispute over a South Korea-based telecom partner's access, which added geopolitical weight to an already fast-moving situation and helps explain why Anthropic's diplomatic outreach has specifically centered on the Seoul office. The two threads — the "fix this code" finding and the South Korea access question — arrived close together, which is part of why the response moved as fast as it did.
Frequently Asked Questions
Why was Fable 5 banned?
Amazon security researchers found that Fable 5 and Mythos 5 would generate code fixes for known vulnerabilities when asked to "fix code," even though the models refused a more general request to "review code for security issues." The US Commerce Department issued export controls within hours, and Anthropic disabled both models worldwide because it had no fast way to separate foreign and domestic users.
Was Fable 5 actually jailbroken?
According to Katie Moussouris, the only independent expert allowed to review the underlying report, no jailbreak occurred. She described the sequence as standard defensive find-fix-test security work, not a guardrail bypass.
Who is Katie Moussouris and why does her opinion matter here?
Katie Moussouris is the founder and CEO of Luta Security and a pioneer of corporate bug bounty programs. From 2013 to 2017 she helped renegotiate the Wassenaar Arrangement, the export control pact whose defensive cybersecurity exemptions are central to this dispute.
Will Fable 5 come back?
Anthropic's international leadership has expressed confidence both models will return within days, and the company is reportedly building an identity verification system, but no confirmed restoration date has been published as of this writing.
Does this affect regular Claude models like Sonnet and Opus?
No. The export controls apply specifically to Fable 5 and Mythos 5. Standard Claude models remain available and run on separate infrastructure.
Strip away the policy language and this is ultimately a story about how blurry the line has become between "security tool" and "security risk" — the exact same model behavior that makes Fable 5 useful to defenders is what got it pulled from public access. Whether that's the right tradeoff is still being argued, loudly, by the people who'd know best. Want to stay on top of how this resolves? Keep checking our AI News section, or browse the NyvoraAI Blog for more deep dives like this one. Have a tip or correction? Visit our Contact page.