
Makers of AI browsers make lofty promises. With a single prompt, users can ask one to find a restaurant in a particular part of town, reserve a table, invite a colleague to lunch, and email a confirmation. These makers are much more reticent about the risks of blurring the once fine line between browsing sites and asking a large language model a question or instructing it to take potentially sensitive actions. LLM developers’ answer so far has been to build guardrails that make some requests off
Will any major AI browser maker publish an official security response to the dream-state attack by July 15, 2026?
Resolves by Jul 15, 2026
AI browsers can perform actions on a user's behalf, such as making reservations or extracting data, but new research demonstrates a vulnerability where malicious websites can manipulate the AI's reasoning to bypass its safety guardrails. The attack works by presenting false information, like claiming 2 + 2 equals 5, which causes the AI to enter a delusional state where it no longer recognizes restrictions on harmful actions. Because AI browsers run locally and merge web browsing with AI decision-making, successful attacks could allow extraction of passwords, credentials, and private data that traditional browsers protect through information separation. The technique, called BioShocking, worked on multiple AI browsers and reveals that current guardrails are reactive measures that don't address the fundamental problem.

After weeks of negotiating with the Trump administration, Anthropic is finally going to be able to bring Claude Fable 5 back online. In a post on X, Anthropic said it plans to begin restoring access tomorrow. Anthropic: We've received notice that the Department of Commerce has lifted export controls on Claude Fable 5 and Mythos 5. We'll begin restoring access tomorrow, and will share an update soon. We're grateful to our users for their patience, and to everyone who worked wit

Anthropic said it would begin restoring access to the Fable on July 1.

The White House is easing restrictions on Anthropic’s most advanced AI models weeks after ordering the company to suspend access for foreign nationals.
Want to go deeper than the news? Explore live, cohort-based AI courses taught by practitioners.
Browse AI courses on Maven