OpenAI adds Lockdown Mode, Trump eyes an OpenAI equity stake, and Apple's Siri reboot is almost here

The U.S. government taking a financial stake in OpenAI. A new security mode that tries to stop AI from leaking your data. Apple's long-promised Siri overhaul finally landing today. And a quiet industry reckoning over AI costs that nobody wants to talk about publicly. Let's get into it.

Prompt injection attacks - the threat OpenAI's new Lockdown Mode is designed to fight - work by doing what, exactly?

The answer is hiding near the bottom of today's newsletter... keep scrolling. 👇

OpenAI has unveiled Lockdown Mode, a new feature designed to protect sensitive data from prompt injection attacks - one of the nastiest and hardest-to-stop security threats in the AI space right now.

The basic idea: when Lockdown Mode is active, ChatGPT becomes far more cautious about what it reads and acts on from external sources. If you're using it as an agent - browsing the web, reading documents, handling emails - it's much harder for malicious instructions hidden in that content to hijack the model into leaking your data.

TechCrunch notes that even with Lockdown Mode on, ChatGPT isn't fully immune to prompt injections - the goal is to reduce the likelihood that sensitive data gets shared, not eliminate the risk entirely. Think of it as turning the attack surface from a highway down to a narrow footpath.

Given how fast AI agents are being deployed in enterprise workflows, this kind of security tooling is overdue. If you're using ChatGPT to handle anything even remotely sensitive, this is worth turning on the moment it rolls out to your account.

Read the full story →

This one is genuinely unusual. President Trump has said the administration is in discussions about deals "where the American people can benefit from the success of AI" - which, reading between the lines, sounds a lot like the U.S. government taking an equity stake in OpenAI.

TechCrunch reports the discussions are live, though no terms have been disclosed. The timing is notable: OpenAI recently closed its IPO window and is navigating its complicated transition from nonprofit to for-profit structure. A government equity deal would add a whole new layer of complexity to that already thorny process.

A U.S. government stake in OpenAI would be unprecedented in modern American tech. It raises real questions about independence, national security access, and what happens when the government becomes both regulator and shareholder. The White House has been closely involved in AI policy lately - earlier this week, senior AI advisor Sriram Krishnan announced he's leaving his role to start a new institution focused on shaping Trump's AI agenda.

You can track how this intersects with broader AI regulation and White House AI policy as this story develops.

Read the full story →

If you've been following Apple Intelligence since its 2024 debut, you know the story: big promises, slow delivery, and a Siri that still couldn't tell you what was in your own calendar. Today at WWDC 2026, Apple is expected to change that.

The new Siri is built from the ground up with a genuine large language model at its core - not the patched-together voice assistant Apple has been shipping for years. The Verge describes Apple as having been "on its back foot, AI-wise" but argues that playing from behind might actually work in Apple's favor: they've had time to watch what users actually want, rather than rush to ship.

Reports suggest Google Gemini integration could be part of the package - giving Siri access to a far more capable underlying model for complex queries. TechCrunch's WWDC preview also flags broader Apple Intelligence updates across iOS, macOS, and iPadOS.

The key test isn't the demo - it's whether this version actually ships on time. Apple has announced a new Siri twice now and delivered something underwhelming both times. Third time's the charm, or at least that's what the WWDC keynote is going to try to convince you of today.

Read the full story →

There's a reckoning happening inside companies that went all-in on AI tooling - and TechCrunch has a detailed look at it. The shift, as one source put it: "The whole conversation shifted from tokenmaxxing and 'go fast' to 'we need guardrails, how do we control this?'"

The problem is structural. When developers and teams start using AI agents that chain together multiple calls, read long documents, and reason through multi-step tasks, token usage compounds fast. What looks like a manageable API cost at prototype stage can balloon into something genuinely alarming at production scale.

Companies are now putting in place token budgets, usage dashboards, and architectural guardrails - things that would have seemed overly cautious 18 months ago. If you're running any kind of AI-powered product and haven't done a token audit lately, this is your reminder. Our token calculator can help you model costs before they spiral.

Read the full story →

Here's a story that should give you pause before you take ChatGPT's shopping suggestions at face value. The Guardian reports on a wave of scams where buyers are being directed to fake websites after AI tools recommend them as legitimate stores.

The mechanism is what makes this particularly insidious. Bad actors are manipulating the data that AI tools draw on - whether through SEO poisoning, injecting fake reviews, or exploiting how models are trained on web data - so that when you ask ChatGPT to recommend where to buy something, it surfaces fraudulent sites with convincing-sounding names and plausible-looking prices.

The practical takeaway: never use an AI recommendation as your only verification step when shopping online. Cross-check the URL directly, look for established retailers you already know, and be especially cautious with niche or luxury product searches. This intersects with the broader AI shopping trust problem that's only going to grow as more people use chatbots as their default search.

Read the full story →

Speaking of building things people can actually trust online - if you're working on a project or product and need a clean, fast website without burning hours on setup, 60sec.site uses AI to get you live in under a minute. Worth a look.

The answer is B - hiding malicious instructions inside content an AI reads, hijacking its behavior. A prompt injection attack works by embedding hidden commands inside text the model is asked to process - a document, a webpage, an email. The model treats those instructions as legitimate and follows them, potentially leaking data or taking unintended actions. It's one of the hardest AI security problems to fully solve, which is exactly why OpenAI's Lockdown Mode is a significant (if partial) step forward.

As AI tools get deeper into our daily workflows - shopping, email, document handling - how much do you actually trust the output? Are you still double-checking everything, or have you started taking recommendations at face value? Hit reply and let me know - I read every response and I'm genuinely curious where people's trust levels are right now.

That's it for today. More tomorrow - and if you want to dig into any of these stories further, the full archive is at dailyinference.com. See you then.