We are pleased to share that Forescout has been accepted into Anthropic’s Cyber Verification Program (CVP), an application-based program that gives approved cybersecurity teams structured access to Claude’s frontier models for legitimate dual-use security research.
What Is the CVP?
Anthropic runs real-time cyber safeguards across its Claude Opus and Sonnet models that block certain high-risk dual-use activities by default – things like vulnerability exploitation research and offensive tooling development – even when conducted for defensive purposes. Through the CVP, verified defenders can continue that legitimate work with adjusted safeguards while prohibited categories, such as mass exfiltration tooling and ransomware development remain blocked.
The CVP creates a narrow, authorized lane for cybersecurity teams whose job is to find flaws before adversaries do. That’s exactly what we do at Forescout Research – Vedere Labs. Our research is published openly, shared with the broader cybersecurity community, reported through coordinated disclosure processes, shared with CISA and ISAC communities, and used to strengthen the contextual threat prioritization capabilities of the Forescout Vistaro™ platform.
Why This Matters for Our Research
Vedere Labs’ work is grounded in original vulnerability research across IT, OT, IoT, and IoMT. Recent examples like BRIDGE:BREAK (22 new CVEs in serial-to-Ethernet converters), SUN:DOWN (nearly 50 flaws across solar inverters), and DRAY:BREAK (14 issues on DrayTek routers exploited by ransomware) all required deep reverse engineering, firmware analysis, vulnerability finding, exploit development, and detection engineering.
We have already started finding new vulnerabilities with AI assistance and expect that access through the CVP will greatly accelerate our research.
With CVP-adjusted access to Claude, our researchers can continue to use frontier models to:
- Accelerate firmware and protocol analysis on embedded devices without agents that consistently dominate our Riskiest Devices research.
- Validate exploitability earlier in the research process, helping shorten the path from discovery to coordinated disclosure and a patched vendor advisory.
- Enrich threat intelligence to pivot from raw network signals of exploits to IoCs, infrastructure clusters, and MITRE ATT&CK TTPs — feeding directly into our threat feed.
Exploitation timelines are compressing even for specialized devices, so we need to leverage AI to keep up the pace.
Frontier models can uncover decades-old vulnerabilities in days. The same capability is dangerous in adversarial hands which is exactly why programs like the CVP exist to keep defenders on the leading edge.
What This Means for Forescout Customers
The CVP is a research enabler, not a product. But the benefits extend well beyond our lab.
- More CVEs disclosed faster. Shorter research cycles mean earlier vendor advisories and earlier detections in the Forescout Vistaro platform.
- Better coverage of the devices that actually matter. Our 2026 Riskiest Devices report shows risk spreading into serial-to-IP converters, BACnet routers, RFID readers, medical image printers, and other rarely monitored device classes. These are exactly the targets that we will be able to research faster with the help of AI.
- Higher-fidelity threat intel. Vedere Labs’ indicator feeds and list of known exploited vulnerabilities (KEV) used by Forescout Vistaro get sharper enrichment and faster triage.
The Bottom Line
Adversaries are already using AI. Acceptance into Anthropic’s CVP means that Forescout Research – Vedere Labs can do the same legitimately, transparently, and in service of the defenders who rely on our research to protect critical infrastructure, hospitals, factories, and networks worldwide.
We’ll continue to publish our research, disclose vulnerabilities responsibly, share intelligence with the broader security community, and deliver the detections and contextual threat intelligence our customers rely on. The CVP gives our researchers another tool to perform this important work faster.