Simple explanation

SEBI saw that new AI tools like Anthropic’s “Mythos” can scan huge amounts of code and find hidden security holes in minutes — stuff that used to take hackers weeks. That’s scary for banks, stock exchanges, and brokers because one attack could spread fast across the whole market. So SEBI made a special team called “cyber-suraksha.ai” to study the risks and tell everyone how to defend against them.

The core idea

1. AI finds bugs at super speed: Tools like Mythos can detect and exploit vulnerabilities, including zero-days, way faster than humans.
2. Markets are interconnected: One weak link can cascade, so SEBI wants all regulated firms to patch, monitor, and share threat info together.

Key concepts

• 1. What triggered this: Anthropic’s AI model “Mythos” can autonomously find vulnerabilities and write working exploits, even 27-year-old bugs.
• 2. SEBI’s task force: Named “cyber-suraksha.ai”, with MIIs, QRTAs, regulated entities, and stakeholders to assess AI risks and build a uniform mitigation strategy.
• 3. Who it applies to: All regulated entities — AIFs, banks, clearing corps, depositories, MFs, brokers, etc. Circular dated May 5, 2026.
• 4. Key directions: Immediate patching/virtual patching, continuous AI-assisted vulnerability assessments, SOC monitoring, API hardening, vendor risk reviews.
• 5. Why urgent: Time between vulnerability discovery and exploitation is collapsing. Many firms still have slow patching, excess permissions, weak hygiene.
• 6. Systemic risk angle: Financial systems are highly interconnected and run on legacy IT. One cyberattack can cascade across institutions.
• 7. Not just SEBI: Finance Minister, DFS, RBI, and banks like SBI are also on high alert about Mythos.

One analogy

Think of the market as a city power grid. Before, hackers were burglars checking doors one by one. Mythos is like a drone that maps every unlocked window in the entire city in 10 minutes and prints skeleton keys. SEBI’s task force is the emergency coordination center telling all buildings to lock up now and share guard duty.

Common confusions

1. “Mythos is attacking us now” → No
   Mythos is a vulnerability-finding AI. The risk is that bad actors could use similar AI. Experts say Mythos itself is exposing how vulnerable firms already are.

2. “Only stock brokers need to worry” → No
   Advisory covers all SEBI-regulated entities: MFs, depositories, RTAs, banks, AIFs, etc.

3. “SEBI will ban AI tools” → No
   SEBI wants firms to use AI for defense too — AI-assisted vulnerability assessments, monitoring, and detection.

Revision table

Slide 1 — SEBI Proposes Early Pay-In for Commodity Options

What Happened?

• Securities and Exchange Board of India proposed early pay-in settlement for commodity options contracts

• Currently, the early pay-in facility exists only for commodity futures contracts

• Options contracts are presently outside the early pay-in framework

• The proposal follows requests from industry participants

• SEBI aims to ensure consistency across derivative instruments

Slide 2 — Why It Matters

Why This Is Important

• Creates uniform settlement rules across derivatives

• May improve settlement efficiency and risk management

• Responds to industry demand for operational consistency

Key Points

• Applies to: Commodity options contracts

• Existing facility available for: Commodity futures

• Proposed mechanism: Early pay-in settlement

Simple Definitions

• Early Pay-In (EPI): Advance settlement of obligations

• Commodity Derivative: Contract linked to commodities

• Options Contract: Right to buy or sell asset

• Futures Contract: Agreement for future trade

Q&A Table