Skip to content
← All briefings

Briefing · Jul 13

Apple sues OpenAI, alleging 400+ former employees carried trade secrets to the AI company

AI

Anthropic publishes research on how Claude's expressed values shift across models and languages

Anthropic released new research analyzing over 300,000 anonymized conversations to map how the values Claude expresses vary across model versions and spoken languages. The team identified four key axes of variation — Deference vs. Caution, Warmth vs. Rigor, Depth vs. Brevity, and Candor vs. Execution — finding that each Claude model lands at a distinct point along these dimensions. Sonnet 4.6 skews more playful and affirming, while Opus 4.7 tends toward candid critique.

Language also shapes Claude's expressed values in measurable ways: conversations in Hindi and Arabic draw out more warmth, while Russian-language exchanges tilt toward rigor, with Claude more likely to ask users for supporting evidence. Anthropic acknowledged it does not yet understand why these variations emerge or whether they are desirable, framing the research as a foundation for eventually steering — or deciding not to steer — how Claude's values manifest in practice.

Consumer Tech & Gadgets

Apple sues OpenAI, alleging 400+ former employees carried trade secrets to the AI company

Apple has filed a lawsuit against OpenAI alleging that more than 400 former Apple employees who now work at the AI company brought confidential and proprietary information with them. Apple argued in the filing that the sheer volume of departures makes it unsurprising that OpenAI would have access to its trade secrets. The Verge catalogued the six wildest claims in the complaint, which covers everything from product roadmaps to internal engineering processes.

Despite the lawsuit's headline-grabbing allegations, a separate report indicated that OpenAI's hardware development timeline remains unchanged, suggesting the company does not expect the legal action to materially disrupt its product plans.

Apple hits record 20% global smartphone share as overall market falls

Apple captured a record 20 percent share of global smartphone shipments in the latest tracked period even as the broader market declined, according to a new report. The milestone comes alongside a 15 percent rally in AAPL stock, which analysts attributed to investor relief that Apple is taking a cautious approach to AI spending while also benefiting from planned price increases on upcoming hardware.

Apple acquires observability startup SigScalr

Apple has acquired SigScalr, a startup focused on observability and monitoring infrastructure. The deal signals Apple's continued investment in backend tooling, likely to support the growing demands of its cloud and AI services, though financial terms were not disclosed.

Design

Rive launches 3D engine support in Early Access, with AI-assisted scripting

Rive has introduced 3D engine capabilities in Early Access, allowing designers and developers to build full 3D scenes — including model import, lighting rigs, materials, and camera controls — directly inside the tool. The company is leaning on AI to lower the barrier, noting that non-graphics-programmers can use it to generate the necessary scripts. Once the feature moves to production, content will deploy across native mobile, consoles, vehicles, and the web from a single build. Community contributor Sanu has already published free scripts on the Rive Marketplace demonstrating textured GLB import, click-to-orbit camera, and multiple shading modes including clay, wireframe, and toon.

Dev Tools & Infrastructure

GitHub Copilot CLI update cuts tool, search, and edit failures by double digits

GitHub shipped a reliability improvement to Copilot CLI, saying smarter subagent delegation reduced tool failures by 23%, search failures by 27%, and edit failures by 18% with no quality regression. The update is available now via the /update command to v1.0.42 or later.

Cloudflare launches Precursor, a session-based bot-detection layer targeting advanced human-mimicking bots

Cloudflare introduced Precursor, a new bot-management product that uses continuous, session-based client signals to identify bots that mimic human behavior across an entire user journey rather than at a single request boundary. The announcement positions Precursor as a step beyond traditional fingerprinting, designed for adversaries sophisticated enough to defeat per-request checks.

Neon releases unified TypeScript SDK to manage all Neon Postgres services from one package

Neon published @neon/sdk, a zero-dependency, fetch-based TypeScript client built on Hey API that consolidates control of projects, branches, consumption metrics, auth, the data API, and the new Neon Platform primitives into a single npm package. The release removes the need to wire together separate clients for different parts of the Neon platform.

Gaming

D23 to host Kingdom Hearts 25th anniversary deep dive panel on August 15

Square Enix and Disney will mark 25 years of Kingdom Hearts at D23 with a dedicated panel on August 15 from 4:30 to 5:30 PM PT. Billed as a journey through the saga's light and darkness, the session will feature insights from creative minds behind the franchise and explore how it united Disney, Pixar, and Square Enix across its run.

Retailer association criticizes Sony for removing disc support from PlayStation

A retailer association has publicly pushed back against Sony's move to eliminate physical disc support on PlayStation, arguing the decision strips consumers of choice. The criticism adds industry pressure to Sony at a time when the all-digital direction for the platform is drawing scrutiny from the retail sector.

Layoffs & Industry Shakeups

Grok CLI Found Secretly Uploading Users' Private Codebases Without Consent

Developers are raising alarms after discovering that Grok CLI, the AI coding tool linked to SpaceX, was silently uploading private codebases without user knowledge or consent. Prominent engineering commentator Gergely Orosz reported receiving messages from concerned developers whose code had been sent to xAI's servers, calling the behavior 'absolutely unacceptable' and saying it burned trust 'like there's no tomorrow.' Unlike Cursor, which indexes codebases locally, Grok CLI appears to be transmitting repository contents — with the only opt-out being an enterprise-tier zero data retention setting that most users do not have.

The incident has broader industry implications: Orosz noted that Cursor — which has so far avoided this kind of data-grab — is in the process of being acquired by a company that could eventually integrate Grok under the hood, raising fears that even Cursor users may not be safe long-term. The episode is being cited as a windfall for open-source coding tools, which cannot pull off such collection undetected, with Orosz calling every incident like this 'free advertisement' for open-source alternatives.

Security

ModHeader browser extension pulled from Chrome and Edge after hidden browsing-history collector found in 1.6M installs

Google and Microsoft removed the ModHeader extension from their respective web stores after researchers discovered a dormant browsing-history collection pipeline buried inside the legitimate store build. The extension had approximately 1.6 million combined installs across Chrome and Edge, and most of the data-collection infrastructure was already in place and waiting to activate.

CrashStealer macOS malware bypasses Gatekeeper using signed, notarized dropper

A newly identified macOS infostealer called CrashStealer uses a dropper that is both code-signed and Apple-notarized, allowing it to pass Gatekeeper security checks without triggering warnings. Once running, it harvests browser credentials, cryptocurrency wallet data, password manager records, files, and macOS keychain material. The malware masquerades as Apple's own crash-reporting tool to avoid user suspicion.

Free Android VPN apps still silently reroute encrypted traffic a year after disclosure, remaining on Play Store

Three popular free Android VPN apps remain available on the Google Play Store more than a year after researchers first flagged that an attacker on the same Wi-Fi network could silently reroute traffic the apps were supposed to encrypt. Google told The Hacker News it takes such reports seriously but declined to say what, if any, action it had taken against the five affected apps.

Startups & Funding

YC's Seibel hits Claude for refusing to help admin scrape his own data

Y Combinator partner Michael Seibel publicly called out Anthropic's Claude after the model refused to assist him in scraping data from a product he pays for and administers, debating whether he had permission despite his clear admin status. Seibel said he switched models immediately, and in a follow-up noted that OpenAI was already working on the same task — a pointed comparison that landed with the startup and VC crowd given his profile.

Paul Graham: YC critics keep predicting its decline — and keep being wrong

Paul Graham pushed back on perennial skepticism about Y Combinator, saying investor complaints about valuations being too high and competitor claims that growing batch sizes have diluted quality are recurring critiques that have historically proved wrong every time. Separately, he amplified the founder advice that the biggest mistake early-stage builders make is imagining what users want rather than observing them directly — though young founders can sidestep this trap by simply building for themselves, since their tastes often make them natural bellwethers for what the market will eventually want.