---

OpenAI laid out a new plan on Tuesday to expand access to AI models with advanced cyber capabilities while implementing controls on who can use them.

Why it matters: The roadmap coincides with the release of a new model variant, GPT-5.4-Cyber, designed to assist with defensive cybersecurity tasks and be more permissive for vetted users.

---

• Axios first reported on the new cybersecurity product.

Between the lines: OpenAI is shifting its approach to cyber risk to focus less on restricting what models can do and more on verifying who gets access to the most sensitive capabilities.

• The company says it aims to make tools "as widely available as possible while preventing misuse" through identity verification and monitoring systems, according to a blog post.
• OpenAI plans to expand access to thousands of individuals and hundreds of security teams through its already-established Trusted Access for Cyber program, provided they complete verification checks.

The intrigue: OpenAI's approach differs from Anthropic's more restrictive rollout, where only about 40 organizations are getting access to Mythos Preview.

• Anthropic warned that its model was so adept at its finding and exploiting security flaws that it was simply too dangerous to release widely.
• OpenAI is responding to similar security risks by trying to make its tools more widely available for defensive cyber work while still preventing nefarious actors from accessing them. It's a difficult balance to strike.

Zoom in: OpenAI is adding new tiers to its Trusted Access for Cyber program, which launched earlier this year, with higher levels of verification unlocking more powerful capabilities.

• Users approved for the highest tier will gain access to GPT-5.4-Cyber, which has fewer restrictions on sensitive cybersecurity tasks, such as vulnerability research and analysis.
• The model is designed to reduce "unnecessary friction" for legitimate security work, after some cyber partners said they ran into issues with earlier GPT models sometimes refusing to answer dual-use cyber queries.

What they're saying: "This is a team sport, we need to make sure that every single team is empowered to secure their systems," Fouad Matin, a cyber researcher at OpenAI, told reporters. "No one should be in the business of picking winners and losers when it comes to cybersecurity."

Yes, but: The rollout will be gradual. OpenAI says initial access to the more permissive model will be limited to vetted security vendors, organizations and researchers, but broader availability will scale over time.

• The company also expects onboarding to take time as it reviews and verifies users.

The intrigue: OpenAI is not currently offering GPT-5.4-Cyber access to U.S. government agencies, but the company told reporters it is in ongoing discussions and will evaluate access through internal governance and safety review processes.

Reality check: Some security experts argue that many vulnerabilities identified by AI tools are not necessarily novel or easily exploitable.

• However, the speed at which these models are finding security flaws — and their rapid pace of advancement — is worrying government officials and global business leaders.

What to watch: Running models with these capabilities requires a lot of computing power. Not everyone will be willing to pay the price to run them on their environments.

Go deeper: Funding cuts, political battles muddy Trump's response to Mythos

---

It looks great and is pretty easy to clean, too.

---

We're sliding into developer conference season and one of the biggest events on the upcoming calendar is Google I/O. This year's edition is taking place on May 19 and 20. As usual, the in-person element will happen in Mountain View, California, though many of the keynotes and sessions will be livestreamed. Google will surely make its biggest announcements during the opening keynote, which will start at 1PM ET on May 19. A developer keynote will take place later the same day.

As ever, the rumor mill will pick up speed in the leadup to Google I/O. We do have some ideas about what Google will discuss at the event. So let's take a look at what to expect at Google I/O 2026 (we'll update this story as we hear more credible rumors).

What's officially on deck

Google

When it confirmed the dates for this year's I/O, Google revealed a little bit about what it has in store for us. As you might imagine, AI will be a major focus of the event. Google plans to share its "AI breakthroughs and updates in products across the company, from Gemini to Android, Chrome, Cloud and more," it wrote in a blog post in February. 

There will be news on Gemini model updates as well as agentic coding. Google will have some product demos too.

The company has released its initial schedule of keynotes and sessions, but it doesn't provide us with a lot of specifics as yet. It has lined up discussions on what's new in the likes of Google Play, Firebase (a mobile and web app development platform), the Gemma open model family and the open-source app development framework Flutter. Interestingly, there isn't a dedicated session for Android XR on the schedule just yet.

What to expect

9to5Google

There haven't been many credible leaks ahead of Google I/O as yet, but we can make some educated guesses about what to expect from the event. It's all but certain that we'll get more details about Android 17 at I/O. Developers need time to tweak their apps ahead of the next major version of the operating system rolling out to everyone if they want to take advantage of new features as soon as possible, and they invariably get a heads up about those at I/O every year. (That said, Google has been moving away from a big annual release approach in favor of juicier Pixel Drops/Android updates, so we may not see some of the new features it unveils at I/O for some time.)

As for other operating systems, Google is planning to meld ChromeOS and Android into a unified platform. This seems to be the project that's being referred to as Aluminium OS, which we got a first glimpse of earlier this year thanks to some leaks. I/O seems like the perfect venue for Google to start showing that off to the public.

On the AI front, a reveal of Gemini 4 could be on the docket, along with details of the latest Veo text-to-video model. Maybe we’ll hear more about Project Astra, Google’s pitch for a universal AI assistant.

If Google has some consumer hardware to show off at this year's event, I suspect it'll be an Android XR device or devices, rather than a Pixel phone or watch. There is a chance that we'll get a tease of the Google Pixel 11 lineup. But don't be surprised if we don't see that or the Pixel Watch 5 until Google's dedicated hardware event, which has taken place in August or October in recent years (Google will want to stay well away from Apple's iPhone event, which will likely take place in September as usual). 

Here’s hoping for a big surprise or two

Google

Sure, Android updates are all well and good. If Google insists on cramming Gemini and other AI tools into all of its tools and services, we’ll at least listen to what they have to say about all that.

But I have my fingers crossed for some cool surprises. Give us something new from Google X (Alphabet’s moonshot factory, not the thing that was once Twitter), an idea that could be a net benefit for humanity and boost the company’s bottom line at the same time. These events are always more fun when there’s something for us to get genuinely excited about, even if it’s something relatively niche but out there, like the Google Beam 3D video conferencing tech.

This article originally appeared on Engadget at https://www.engadget.com/ai/what-to-expect-from-google-io-2026-200252914.html?src=rss

---

The recalled Members Mark 7' Pre-Lit Twinkling Buck reindeer — sold for about $170 — can overheat and emit smoke, and Sam's Club is offering buyers either a full refund or a repair kit.

---

Dianna Russini announced a decision on her future at The Athletic amid the Mike Vrabel controversy.

---

OpenAI says its safeguards “sufficiently reduce cyber risk" for now, while GPT-5.4-Cyber is a new cybersecurity-focused model.

---

Legwold and the late McGinnis formed a bond over combine breakfasts, large trucks, makeshift wallets and bobbleheads.

---

Investigators arrested Devion Williams, who's believed to be responsible for at least 10 robberies in east Harris County.

---

Supporting these levels in the body is increasingly recognized as an important focus in longevity medicine.

---

The embattled Republican, who admitted to having an affair with a staffer who later died, said Monday in a social media post that "God has a plan for us all."

---

Air New Zealand's long-awaited Skynest bunk beds are coming to economy flyers in November 2026. The new product will be available on flights between New York and Auckland.

---

The actress will appear in James Gunn's highly anticipated DC sequel in a morally ambiguous role that could complicate the hero's love life.

---

Indiana Fever point guard Caitlin Clark is one of Nike's most popular signature athletes. On Wednesday, fans will get the opportunity to buy one of Clark's player edition sneakers first debuted by the WNBA All-Star in May 2025: the Kobe 5 Protro x Caitlin Clark "Rookie of the Year." The shoes, ...

---

The Pelicans have not yet completed a short list of coaching candidates and might keep interim coach James Borrego on a permanent basis, according to Joe Dumars.

---

NFL reporter Dianna Russini has resigned from The Athletic less than a week after published photos of her and Patriots coach Mike Vrabel at an Arizona resort prompted an internal investigation at the New York Times-owned sports outlet.

---

The Academy Award winning actress is learning a new trade as part of a personal expansion.