AI news & training for business owners & operators. One email. One clear next step.

THIS WEEK IN AI

This week, AI quietly stopped being a chatbot. Three big releases landed, and all of them point in the same direction: AI is moving off the screen and into the systems your business actually runs on. That shift changes what you should be paying attention to, and what you should not be deploying yet.

What happened:

OpenAI rolled out GPT-5.5-Cyber on May 7 as a limited preview for vetted cybersecurity teams. It runs through a program called Trusted Access for Cyber, which OpenAI says has scaled to thousands of verified defenders and hundreds of teams responsible for protecting critical software. The model is more permissive on security tasks like vulnerability triage, patch validation, and malware analysis. UK testing showed GPT-5.5 completed a 32-step simulated corporate cyberattack in 2 of 10 runs.

Why it matters to your business:

This is the first time a major AI lab has gated capability behind identity verification at scale. The era of "anyone can use everything" is ending. Expect more tiered access across legal, financial, and clinical AI tools over the next 12 months. If you build workflows around features available today, plan for the possibility that your team gets pushed into a different tier tomorrow.

Source: OpenAI

What happened:

Perplexity made its Personal Computer agent generally available to all Mac users on May 7. It runs on your machine, reads your local files, operates native Mac apps, and connects to over 400 outside tools. Users need a Pro or Max subscription to actually run it. The pitch is that AI agents do real work where your work already lives, not in a separate browser tab.

Why it matters to your business:

This is the opening move in a category that will get crowded fast. An agent with access to your local files is also an agent with access to your client list, your contracts, and your internal notes. Before anyone on your team installs this, decide who is allowed to run agentic tools on company devices and what those tools are allowed to touch. That conversation is overdue at most companies I talk to.

Source: TechCrunch

What happened:

Mozilla published a behind-the-scenes look at how Anthropic's Mythos model has been hunting bugs in Firefox. The results are not subtle. Firefox shipped 423 bug fixes in April 2026, compared to 31 in April 2025. One of the bugs Mythos found had been sitting in the code for more than a decade. Mozilla's engineers said the change in capability over a few months has been hard to overstate.

Why it matters to your business:

Two things to take from this. First, your software stack is about to get more secure quickly, which is good. Second, the same tools that find bugs for defenders also find bugs for attackers. Anthropic CEO Dario Amodei thinks defense wins because there are only so many bugs to fix. Mozilla's engineer was more careful: "Realistically, nobody knows the answer to this yet." Either way, your patching discipline matters more this year than last.

Source: TechCrunch

I had a call earlier this week with a business owner who runs a 40-person services firm. He told me his ops manager wanted to install one of the new agent tools on her laptop so she could "let it work overnight." He asked if I thought that was a good idea.

I asked him three questions. Who owns the data on that laptop. What apps is it allowed to open. And if the agent does the wrong thing at 2am, who finds out and when.

He did not have answers to any of them. That is normal. Most business owners I sit with do not have answers either, because nobody asked the questions out loud yet.

This is the thing about agentic AI that the press releases keep glossing over. A chatbot gives you an answer. An agent takes an action. Those are different categories of risk. A bad chatbot answer wastes ten minutes. A bad agent action sends the wrong file to the wrong person, or runs up a bill you did not approve, or quietly modifies something in a system you needed to keep stable.

Perplexity's Personal Computer is real, useful technology. So is Claude doing work in spreadsheets. So is the cybersecurity tier OpenAI just rolled out. None of that is the problem.

The problem is the gap between what these tools can do and what your business is set up to absorb. The work has to be defined. The boundaries have to be drawn. Someone has to own the output. If those three things are not in place, the agent does not save you time. It moves the breakage somewhere harder to find.

I keep saying this and I will keep saying it. AI amplifies the workflow you already have. If your workflow is a single ops manager holding everything in her head, an agent does not fix that. It multiplies it.

So when you read about the new model and the new app and the new release, the question is not "should we try it." The question is "what would we change about how we work before we trust it with anything that matters."

That is the work. The model does not do the work for you.

Before anyone on your team installs an agent tool that touches local files (Perplexity Personal Computer, ChatGPT desktop agents, Claude desktop, or anything similar), run this 4-question filter in your next leadership meeting. Five minutes is enough.

Forward this to whoever runs IT or operations on your team. If you cannot answer all four, you are not ready to deploy. That is not a failure. That is the work that comes before the tool.

If one of those four questions stopped you cold, that is the signal. Book a free 20-minute fit call and we will talk through it. No pitch, no slides, just an honest look at what is actually costing you.

Book the call

Thanks for reading,

Andrew Keener

Operations & AI Strategist

Keen Alliance Consulting