For years, security researchers have warned that AI would eventually be weaponized at scale. In late 2025 and early 2026, it happened — quietly, methodically, and with a scope that should reframe how every security team thinks about AI-enabled threats. A single threat actor used Anthropic’s Claude Code and OpenAI’s GPT-4.1 to breach nine Mexican government agencies, exfiltrating approximately 150GB of data — hundreds of millions of citizen records — across a campaign that ran from late December 2025 through mid-February 2026. Confirmed reports emerged April 11, 2026, with investigators calling it one of the first confirmed cases of AI-assisted state-scale cyber espionage carried out by a single individual. ...

Action required by April 30, 2026. If you have Claude Opus 4 or Opus 4.1 hardcoded anywhere — environment variables, Claude Code configurations, OpenClaw provider settings, API client code — you need to migrate. The clock is ticking. Anthropic has officially removed Claude Opus 4 and Opus 4.1 from the model selector and from Claude Code. In a separate but related change, the 1 million token context window beta for Claude Sonnet 4.5 and Sonnet 4 will be retired on April 30, 2026. ...

The Model Context Protocol (MCP) has published its new authorization specification, and it’s a meaningful upgrade for anyone building or securing AI agent systems. The spec mandates OAuth 2.1 as the foundational auth framework, with RFC 8707 Resource Indicators providing the mechanism for strict, per-resource access controls. If you’re running MCP servers in production — or building agents that communicate with them — this guide walks through what changed, why it matters, and what you need to implement. ...

Note: This is a pre-release. OpenClaw v2026.4.12 was tagged April 12, 2026, at 23:27 UTC. It has not yet received a stable release tag. Early adopters can install it now; production deployments may prefer to wait 24–48 hours for the stable tag. OpenClaw v2026.4.12 dropped late Sunday night with a focused set of improvements across three core systems: plugin loading, active memory recall, and dreaming. None of these are flashy new features — they’re the kind of hardening that makes a system significantly more reliable, predictable, and debuggable in practice. ...

The UK’s financial establishment is in emergency mode. The Bank of England, the Financial Conduct Authority, the Treasury, and the National Cyber Security Centre are moving in lockstep — and fast. Within a two-week window, leaders from major banks, insurers, and exchanges have been called to address critical security vulnerabilities exposed by Anthropic’s newest model, Claude Mythos Preview. The story broke via the Financial Times and was quickly confirmed by Reuters, Livemint, and Global Banking & Finance, all citing the same underlying FT report. Four independent outlets. One consistent message: this isn’t a precautionary briefing. Resilience testing is being ordered across the financial sector. ...

If you’re running OpenClaw below version 2026.3.22, stop what you’re doing and upgrade. A newly disclosed high-severity vulnerability — CVE-2026-35650 — allows attackers to bypass the shared host environment policy through inconsistent sanitization of environment variable override keys. The fix landed in v2026.3.22. If you’re not there yet, you’re exposed. What the Vulnerability Does OpenClaw lets operators configure a shared host environment policy that controls which environment variables agents can read, write, or inherit. This is a critical security boundary, especially in multi-tenant or enterprise deployments where different agents may run with different permission scopes. ...

The question has been everywhere in DMs, group chats, and comment sections for weeks: did Anthropic just kill OpenClaw with Claude Code Channels? It’s a fair ask. Channels dropped recently. Anthropic also temporarily banned the OpenClaw harness from running on their subscriptions. Suddenly, the community started questioning everything. Dheeraj Sharma and the team at AI Maker decided to stop speculating and actually run both tools live. They scored them across eight categories with real deployments, not synthetic benchmarks. The verdict? No, Anthropic didn’t kill OpenClaw. But the gap is closing faster than most people expected — and the actual decision between these two tools is more nuanced than the tribal debates suggest. ...

On April 4, 2026, Anthropic quietly rolled out an OAuth authentication change that broke a significant number of OpenClaw deployments overnight. No breaking change notice in the standard channels. No deprecation warning. Agents just stopped working. OpenClaw GitHub issue #19938 lit up within hours, and the community has been piecing together fixes ever since. This guide walks you through diagnosing the auth gap and getting your OpenClaw agent back online in under 20 minutes. ...

Microsoft is done pretending that copilots are good enough. The company is assembling a dedicated engineering team with one clear mandate: integrate OpenClaw — the open-source autonomous agent framework — directly into M365 Copilot. The earliest preview is expected to debut at Microsoft Build 2026 in June, and if the framing holds, it represents the clearest signal yet that the “chatbot era” of enterprise AI is ending. From RAG to Real Autonomy Right now, M365 Copilot is a very sophisticated search engine. It retrieves documents, summarizes them, drafts emails. Those are genuinely useful things. But the architecture underlying all of it is Retrieval-Augmented Generation — a model that finds and reports, not one that acts. ...

Anthropic published one of its more technically substantive engineering blog posts this week: a deep dive into Claude Managed Agents, their hosted service for running long-horizon AI agents. The core thesis is elegant and directly relevant to anyone building production agent systems today. The Brain/Hands Problem The central challenge Anthropic addresses is one that every serious agentic AI practitioner has run into: your harness — the loop of code that calls Claude, handles tool results, manages context, and decides when to stop — encodes assumptions about what the model can and can’t do. The problem? Those assumptions go stale as models improve. ...