Chrome Is Spying On Your CPU

Claude.ai is one thing. Claude Cowork with MCP connections, running agentic workflows, taking actions across your data with ungoverned skills? That is a different conversation entirely, and most security teams are not equipped to govern it.

Harmonic Security is built to secure everything Claude offers. Full browser controls for Claude.ai, deep governance over agentic MCP workflows, and real-time visibility into what Claude is doing across your organization. So your CISO can say yes to the tools your business is already demanding.

Get the guide: Securing Claude Cowork for the enterprise.

Help Security Say Yes

Hey,

Last week, I warned you about the trap of GPT-5.5.

I showed you why benchmark scores are pure theater.

This week, the market stopped pretending.

The infrastructure hardened.

The unlimited AI era quietly died.

The government stepped in on a dangerous model release.

And your browser started running local AI without your permission.

Here is the signal for the week of Apr 26 – May 03.

GitHub Copilot is killing unlimited use.

On June 1, they switch to token-based AI Credits.

Cursor and Windsurf are doing the exact same thing.

The reason is simple.

A quick chat costs pennies.

An autonomous coding agent costs dollars.

You can not charge a flat $20 for both.

Why this matters:
You are about to get hit with surprise bills. If your team relies on autonomous agents, your compute costs will skyrocket.

→ The Move:
Audit your team's API usage today. Set hard token limits before the June 1 shift.
(Source: https://wilico.co.jp/en/blog/end-of-flat-rate-ai-github-copilot-llm-billing-shift)

Anthropic just built an AI so powerful they refuse to release it to the public.

It is called Mythos.

It found over 2,000 zero-day vulnerabilities in 7 weeks.

It broke every major operating system.

The White House had to get involved.

Why this matters:
The security gap just broke. AI can find bugs faster than humans can patch them.

→ The Move:
Assume your current software stack is already compromised. Move critical data to hardened, offline storage.
(Source: https://m.economictimes.com/news/international/us/2000-flaws-in-7-weeks-anthropics-mythos-raises-security-alarms/articleshow/130556036.cms)

Google just pushed 7 built-in AI APIs to Chrome.

They run locally using Gemini Nano.

And they did it without asking for your permission.

Any website can now run inference on your CPU.

No prompts.

No consent dialogs.

Why this matters:
Websites can now use your machine's hardware to run their features. They drain your battery and track your hardware class.

→ The Move:
Dig into your Chrome flags. Disable the built-in AI features until Google adds a strict permission model.
(Source: https://dev.to/vivian-voss/the-browser-that-brought-its-own-ai-30fd)

• Google Workspace Agent Standard: Google opened its Workspace MCP server to public developer preview, making it the universal standard for reading your Gmail and Docs. (Source: https://workspaceupdates.googleblog.com/2026/05/agent-tools-and-security-updates-for-workspace-developers.html)

• Qwen3.6 Crushes Giants: A new 27B open-source model just beat a massive 397B model on coding benchmarks, and it fits on a single graphics card. (Source: https://pub.towardsai.net/i-tested-the-27b-open-source-model-that-crushed-a-397b-moe-on-coding-it-fits-on-one-24gb-gpu-c2d81837121c)

• Writer AI Skips Prompts: Writer launched new enterprise agents that act entirely on their own without needing human prompts. (Source: https://venturebeat.com/technology/writer-launches-ai-agents-that-can-act-without-prompts-taking-on-amazon-microsoft-and-salesforce)

• OpenAI Hardens Security: OpenAI just added passkey-only authentication and disabled email recovery to protect targets from advanced AI hacking. (Source: https://openai.com/index/advanced-account-security/)

Competitors are out there teaching legacy automation tools like Relay.com and Lindy.ai.

Those browser-only apps are already dead.

Inside Agent J Plus, we teach the future that is already here.

We build with Claude Code, Claude Skills, and OpenClaw.

These are the tools that actually replace employees.

Claude Code can do everything those legacy tools do, plus a thousand times more.

And it is easier to set up.

A lot of people try OpenClaw and give up because it is too complex.

They skip the fundamentals.

It is like trying to design a car engine without knowing how a car works.

Agent J Plus teaches the full stack.

$127/mo. Join Agent J+: https://www.agent-j-plus.com

Want a free taste first?

Come to the live workshop this Wednesday at 11:00 AM EST.

We are building a personal CRM live in Claude Cowork.

Register here: https://luma.com/q77ndddp

Not ready to build yet?

Join 500+ builders inside Agent J — it's free: https://www.skool.com/agent-j

The era of unlimited AI is over.

Everything gets metered from here on out.

Adapt your workflows, or pay the price.

See you next Sunday,
John

P.S. Reply "LIST" and I'll send you my tier list of all 21 Claude Cowork Plugins.