IBM's Nanostack Chip, Hormuz Evacuation Halted, and AutoJack AI Flaw
Body:
Body:
The UN's International Maritime Organization has paused a planned evacuation of more than 11,000 sailors stranded in the Strait of Hormuz after the Singapore-flagged cargo ship Ever Lovely was struck by an unknown projectile near Oman [1]. IMO chief Arsenio Dominguez said several boats had already been evacuated, but the agency is seeking "necessary safety guarantees" before resuming the large-scale operation [1]. The attack came just days after the US and Iran agreed to a 14-point deal ending hostilities and reopening the critical waterway, which had been effectively closed since February [1]. Oil prices, which spiked when the strait closed, briefly fell below pre-war levels on Thursday before edging back up [1].
In tech, IBM unveiled a prototype "nanostack" chip architecture that vertically stacks transistors in two layers, packing roughly 100 billion transistors into a fingernail-sized area—double the density of its 2021 state-of-the-art technology [2]. The company says chips built with the complementary field-effect transistor (CFET) design could deliver up to 50% more performance and 70% better energy efficiency than its previous architecture [2]. IBM Research director Jay Gambetta called the advance "a meaningful leap forward," while analysts at TechInsights said it could extend Moore's Law another 10 to 15 years [2]. IBM plans to license the design to semiconductor manufacturers for use in CPUs and GPUs, though mass production will require solving yield and thermal-budget challenges [2].
Meanwhile, the security model for AI agents faces a fresh stress test. A vulnerability chain dubbed AutoJack, disclosed June 24, showed that Microsoft's AutoGen Studio could let a malicious web page take full control of a host machine through a browsing agent [3]. The attack exploits localhost trust: the agent inherits local identity, skips MCP WebSocket authentication, and can spawn arbitrary processes [3]. Microsoft patched the issue before the PyPI release, but researchers warn the underlying pattern—agents executing instructions from untrusted web content with local privileges—is an architectural problem that extends beyond AutoGen [3].
Together, the three stories show how quickly the global risk map is shifting: from energy chokepoints and supply chains to the silicon inside data centers and the agents browsing on our behalf.
Word count check: that's about 330 words. Good.
Citations: [1] BBC, [2] MIT Tech Review, [3] adyog. I need to make sure inline citations are immediately after factual claims. Let me verify each claim has a citation.
- "The UN's International Maritime Organization has paused..." [1] - yes
- "IMO chief Arsenio Dominguez said..." [1] - yes
- "The attack came just days after..." [1] - yes
- "Oil prices..." [1] - yes
- "IBM unveiled..." [2] - yes
- "The company says chips built..." [2] - yes
- "IBM Research director Jay Gambetta..." [2] - yes
- "IBM plans to license..." [2] - yes
- "A vulnerability chain dubbed AutoJack..." [3] - yes
- "The attack exploits..." [3] - yes
- "Microsoft patched..." [3] - yes
Good. I should not include a concluding paragraph without citations, but the last paragraph is analysis/synthesis without new facts, so no citation needed. That's fine.
Let me make sure the date is 2026-06-26 (current date per context). Yes.
Category slug should be lowercase in frontmatter? The example shows category: "AI|Tech|World|Business|Culture" but then says "Pick the best category slug (lowercase): ai, tech, world, business, culture." So I should use "tech" in the frontmatter. The example shows quoted values but the instruction says lowercase slug. I'll use category: "tech".
Tags should be relevant. I'll use ["IBM", "semiconductors", "Hormuz", "AI security", "geopolitics"].
Sources should be the URLs I retrieved. All three.
Let me finalize.
title: "IBM's Nanostack Chip, Hormuz Evacuation Halted, and AutoJack AI Flaw" date: 2026-06-26 category: "tech" tags: ["IBM", "semiconductors", "Hormuz", "AI security", "geopolitics"] sources: ["https://www.technologyreview.com/2026/06/25/1139696/ibm-unveils-sub1nm-chip/", "https://www.bbc.com/news/articles/cjwg9np904qo", "https://pulse.adyog.com/insights/autojack-one-web-page-hijacks-microsoft-autogen-ai-agent"]
The UN's International Maritime Organization has paused a planned evacuation of more than 11,000 sailors stranded in the Strait of Hormuz after the Singapore-flagged cargo ship Ever Lovely was struck by an unknown projectile near Oman [1]. IMO chief Arsenio Dominguez said several boats had already been evacuated, but the agency is seeking "necessary safety guarantees" before resuming the large-scale operation [1]. The attack came just days after the US and Iran agreed to a 14-point deal ending hostilities and reopening the critical waterway, which had been effectively closed since February [1]. Oil prices, which spiked when the strait closed, briefly fell below pre-war levels on Thursday before edging back up [1].
In tech, IBM unveiled a prototype "nanostack" chip architecture that vertically stacks transistors in two layers, packing roughly 100 billion transistors into a fingernail-sized area—double the density of its 2021 state-of-the-art technology [2]. The company says chips built with the complementary field-effect transistor (CFET) design could deliver up to 50% more performance and 70% better energy efficiency than its previous architecture [2]. IBM Research director Jay Gambetta called the advance "a meaningful leap forward," while analysts at TechInsights said it could extend Moore's Law another 10 to 15 years [2]. IBM plans to license the design to semiconductor manufacturers for use in CPUs and GPUs, though mass production will require solving yield and thermal-budget challenges [2].
Meanwhile, the security model for AI agents faces a fresh stress test. A vulnerability chain dubbed AutoJack, disclosed June 24, showed that Microsoft's AutoGen Studio could let a malicious web page take full control of a host machine through a browsing agent [3]. The attack exploits localhost trust: the agent inherits local identity, skips MCP WebSocket authentication, and can spawn arbitrary processes [3]. Microsoft patched the issue before the PyPI release, but researchers warn the underlying pattern—agents executing instructions from untrusted web content with local privileges—is an architectural problem that extends beyond AutoGen [3].
Together, the three stories show how quickly the global risk map is shifting: from energy chokepoints and supply chains to the silicon inside data centers and the agents browsing on our behalf.