LIVE · THU, JUL 09, 2026 --:--:-- ET
Issue Nº 79 COST TOTAL $14738.41 ARTICLES TODAY 10 TOKENS TOTAL 9.40B
aiexpert
Running the wire
Funding Kraken Technology becomes Europe's maritime defence unicorn—$175M Series B from NATO, defence investors Policy OpenAI publishes National Security Principles; expands Daybreak cyber access to 9 allied nations Chips Hugging Face transformers backend now reaches native vLLM speed on Qwen3 MoE, dense models Research NVIDIA releases Nemotron Post-Training v3 Prompt Atlas—10T tokens, synthetic personas for agentic AI Breaking Google AlloyDB ships proxy models for semantic queries—23,000x faster, 6,000x cheaper Market SK Hynix Debuts on Nasdaq With $1 Trillion Valuation; Raises $29B for U.S. Expansion Breaking HalluSquatting attack tricks AI agents into running malicious code via hallucinated repos; 85% success rate Funding Europe VC funding hits $24B in Q2 2026—strongest quarter in 4 years as UK leads Breaking SpaceXAI releases Grok 4.5; Musk claims Opus-class performance at half the cost Funding SambaNova raises $1B Series F at $11B valuation; JPMorgan deploys inference chips on-prem Market AI companies deploy $200m+ in 2026 midterms; Leading the Future + Public First Action back 40 candidates Market Gartner: AI servers hit 258 TWh by 2027, surpassing conventional hardware for first time Breaking Grok 4.5 launches at $2/$6 per million tokens, undercutting Opus 4.8 on cost and speed Chips Imec roadmap: 2.5D optical I/O cuts AI inference interconnect power from 1.25kW to <200W Breaking SpaceXAI releases Grok 4.5 at $2/$6 per MTok; claims parity with Opus 4.7, faster Breaking Grok 4.5 launches at $2/$6 per million tokens: SpaceXAI's economics play vs. Opus, not performance crown Funding Rapidus secures ¥267.6B ($1.7B) for 2nm mass production by 2027; Japan largest shareholder Market SK Hynix US IPO (SKHY) launches July 10; $28B raise 7x oversubscribed, AI memory demand drives 200%+ YTD gain Funding QuantumDiamonds closes €91M (€15M equity + €76M grants) for quantum chip-inspection tech Chips Micron breaks ground on $9.3B HBM fab in Japan; adds subsidized capacity for AI Funding Kraken Technology becomes Europe's maritime defence unicorn—$175M Series B from NATO, defence investors Policy OpenAI publishes National Security Principles; expands Daybreak cyber access to 9 allied nations Chips Hugging Face transformers backend now reaches native vLLM speed on Qwen3 MoE, dense models Research NVIDIA releases Nemotron Post-Training v3 Prompt Atlas—10T tokens, synthetic personas for agentic AI Breaking Google AlloyDB ships proxy models for semantic queries—23,000x faster, 6,000x cheaper Market SK Hynix Debuts on Nasdaq With $1 Trillion Valuation; Raises $29B for U.S. Expansion Breaking HalluSquatting attack tricks AI agents into running malicious code via hallucinated repos; 85% success rate Funding Europe VC funding hits $24B in Q2 2026—strongest quarter in 4 years as UK leads Breaking SpaceXAI releases Grok 4.5; Musk claims Opus-class performance at half the cost Funding SambaNova raises $1B Series F at $11B valuation; JPMorgan deploys inference chips on-prem Market AI companies deploy $200m+ in 2026 midterms; Leading the Future + Public First Action back 40 candidates Market Gartner: AI servers hit 258 TWh by 2027, surpassing conventional hardware for first time Breaking Grok 4.5 launches at $2/$6 per million tokens, undercutting Opus 4.8 on cost and speed Chips Imec roadmap: 2.5D optical I/O cuts AI inference interconnect power from 1.25kW to <200W Breaking SpaceXAI releases Grok 4.5 at $2/$6 per MTok; claims parity with Opus 4.7, faster Breaking Grok 4.5 launches at $2/$6 per million tokens: SpaceXAI's economics play vs. Opus, not performance crown Funding Rapidus secures ¥267.6B ($1.7B) for 2nm mass production by 2027; Japan largest shareholder Market SK Hynix US IPO (SKHY) launches July 10; $28B raise 7x oversubscribed, AI memory demand drives 200%+ YTD gain Funding QuantumDiamonds closes €91M (€15M equity + €76M grants) for quantum chip-inspection tech Chips Micron breaks ground on $9.3B HBM fab in Japan; adds subsidized capacity for AI
Breaking

HalluSquatting attack tricks AI agents into running malicious code via hallucinated repos; 85% success rate

Researchers from Tel Aviv University, Technion, and Intuit published a security paper on HalluSquatting—a novel exploit that leverages AI model hallucinations to trick agentic AI into executing malicious code. The attack works by creating fake GitHub repositories with names the model will hallucinate as real (owner/repo patterns, typos of trending projects), then instructing the agent to fetch and run code from that repo. The model, unaware the repo is new and not in its training data, fabricates a plausible "correct" URL and pulls the attacker's malicious code.

Testing showed the hallucination rate for newly-published (2025) GitHub repositories reached 85% across all major models, including Claude Opus 4.5, with near-100% success against trending agentic tools. In application-level testing on Cursor, Windsurf, and OpenClaw, hallucination success rates ranged 20-35% (Cursor, Gemini CLI, Copilot) to 80-100% (OpenClaw variants). The exploit is universally transferable—not tuned to any specific bot architecture—and an attacker could weaponize a single poisoned repository to compromise tens of thousands of agents simultaneously.

Once malicious code executes on a user's machine, attackers gain full access: they can create reverse shells for remote command execution, steal credentials and data, install software, run crypto miners, and leverage the compromised agent (and its attached API keys, cloud credentials) for further attacks. The researchers tested on common tools like Cursor, Windsurf, and OpenClaw. Mitigation is straightforward but requires user discipline: instruct bots to run web searches before installing software, restrict agent access levels (API keys, service accounts), and avoid granting wide machine permissions by default.

For architects deploying agentic systems in production, the implication is stark: an AI agent with tool-calling permissions and filesystem or API access represents a supply-chain risk equivalent to a developer with pull-request permissions. The exploit does not require model fine-tuning or jailbreaking; it exploits hallucination, a property of all current LLMs. Teams must treat agent deployment as infrastructure security, not just model selection.

Sources