Open-weight models close cyber capability gap to four months behind frontier labs

Open-weight models have compressed the capability gap with frontier systems to just four months, down from six to ten months a year ago, according to the British AI Security Institute's cyber threat assessment. GLM-5.2 and DeepSeek V4-Pro now replicate cutting-edge offensive capabilities at substantially lower cost, while their safety guardrails remain porous. This acceleration narrows the window defenders have to patch vulnerabilities before attacks leverage the latest techniques, reshaping threat modeling for enterprise security teams and raising questions about the sustainability of closed-model competitive advantage.
Modelwire context
Analyst takeThe British AI Security Institute's framing quietly buries the more uncomfortable implication: the four-month lag means defenders are now racing against a clock that resets every time a frontier lab ships, and open-weight releases effectively restart that clock for anyone with a GPU cluster. The cost differential isn't just a procurement story, it's a democratization of offensive tooling that changes who can afford to run sophisticated cyber operations.
This is largely disconnected from recent activity in our archive, as Modelwire has not yet covered the British AI Security Institute's prior assessments or the GLM and DeepSeek V4-Pro capability releases. The story belongs to a cluster of reporting on open-weight model parity with closed systems, a thread that intersects with ongoing debates about whether safety guardrails on open releases can keep pace with raw capability gains. That question has no settled answer in the current literature.
Watch whether the British AI Security Institute publishes a follow-up assessment within the next two quarters that narrows the lag further to two months or less, which would signal the compression is accelerating rather than plateauing. If GLM-5.2 or DeepSeek V4-Pro scores appear in independent red-team benchmarks from firms like Metr or Palisade Research, that would either validate or complicate the Institute's methodology.
This analysis is generated by Modelwire’s editorial layer from our archive and the summary above. It is not a substitute for the original reporting. How we write it.
MentionsBritish AI Security Institute · GLM-5.2 · DeepSeek V4-Pro
Modelwire Editorial
This synthesis and analysis was prepared by the Modelwire editorial team. We use advanced language models to read, ground, and connect the day’s most significant AI developments, providing original strategic context that helps practitioners and leaders stay ahead of the frontier.
Modelwire summarizes, we don’t republish. The Decoder originally reported this story as “Open-weight models now match frontier cyber performance from just four months ago at a fraction of the cost”. The full content lives on the-decoder.com. If you’re a publisher and want a different summarization policy for your work, see our takedown page.