AI Sec Watch

Arm, a UK chip design company, is manufacturing its first CPU (central processing unit, the main processor in a computer) called the Arm AGI CPU, designed specifically for inference (running AI models in the cloud). Meta will be the first customer, using this chip in its data centers alongside processors from other companies like Nvidia and AMD to power AI tools.

Baltimore's mayor and city council sued Elon Musk's xAI company, claiming that its Grok chatbot (an AI assistant designed for general conversation) violated consumer protection laws by creating nonconsensual sexualized images. The lawsuit argues that xAI deceptively marketed Grok and its platform X without disclosing the risks and potential harms users could face.

Agentic AI systems (AI that can independently take actions rather than just make suggestions) are becoming more powerful by gaining direct access to computer systems, creating new governance challenges. The article uses OpenClaw as a case study to illustrate why better oversight and control mechanisms are needed as these autonomous systems become more capable and integrated into real-world operations.

A subscriber-only eBook discusses whether society is adequately prepared for the growing autonomy being given to AI agents, featuring expert perspectives on potential risks. The content suggests that continuing on the current development path without proper safeguards could pose serious existential concerns.

Wallos, an open-source tool for tracking subscriptions that users can run on their own servers, had incomplete security protections in versions before 4.7.0. A logged-in attacker could bypass these protections by sending specially crafted web addresses to three different features (AI Ollama settings, AI recommendations, and notification scheduling), allowing them to reach internal systems or cloud configuration services they shouldn't access.

OpenAI is launching a redesigned shopping feature in ChatGPT that lets users find and compare products by uploading images or describing items with budget and preference details, replacing its failed Instant Checkout feature that allowed direct purchases within the app. The company improved the underlying speed, relevance, and product coverage while allowing merchants to share product feeds directly with OpenAI rather than handling transactions themselves. Retailers like Target, Sephora, and Nordstrom now support this product discovery experience, and merchants can also build custom apps within ChatGPT for more control over their sales process.

AI agents (software systems that can reason, act, and interact with other systems) need to align four layers of intent: what the user wants to accomplish, what the developer designed the agent to do, what role it plays in an organization, and what organizational policies it must follow. When these intent layers are properly aligned, agents deliver useful results while staying within security and compliance boundaries, preventing misuse and building trust.

Anthropic, maker of Claude AI, is asking a federal judge to temporarily block the Pentagon's ban on its technology, which the Department of Defense designated as a supply chain risk (a classification meaning the technology supposedly threatens U.S. national security). The company argues the ban is retaliation for demanding the Pentagon not use Claude for autonomous weapons or mass surveillance, and says it could lose billions in business without court intervention.

Gap is partnering with Google's Gemini to let shoppers buy Gap products directly within the AI platform, making it the first major fashion company to offer this type of integration. When Gemini recommends Gap products while answering customer questions like 'what should I wear to a job interview?', shoppers can complete their purchase through Google Pay without leaving the platform. Gap provides product details to Gemini in advance rather than letting it crawl the website, so Gap can control accuracy and customer data.