Reading time ~6 mins

Anthropic Model Context Protocol design flaw shifts AI security liability to deployer banks across a 150M-download supply chain. EU AI Act August 2 deadline locked in after April 28 trilogue collapse. Vercel customer data stolen via OAuth-connected AI productivity tool. Autoriteit Persoonsgegevens opens GDPR enforcement consultation with a May 17 bank-response window. ABN AMRO's Agentic AI Governance lead moves to Booking.com. BBVA puts ChatGPT Enterprise on all 120,000 employee desks.

Top signal

Anthropic Model Context Protocol design flaw transfers AI security liability to deployer banks across a 150M-download supply chain. Media

Signal: A design flaw in Anthropic's Model Context Protocol — the open standard letting AI assistants reach enterprise systems — allows arbitrary code execution across packages totalling ~150 million downloads, and American Banker reports the unpatched flaw shifts AI security liability directly to deploying US and EU banks.

Relevance: The bank's AI tooling already runs on protocol-based connectors through Claude Code and other internal assistants reaching corporate data, and the supervisory framing closes the "the vendor will fix it" defence ahead of the next DORA and DNB AI-tooling questions.

Consider: Ask whether your domain has any AI assistant connected to internal data via this protocol and whether the connection's risk acceptance has been refreshed in the last 30 days.

The Hacker News | American Banker

Security

Vercel customer data stolen through a third-party AI tool's saved corporate login. Media

Signal: Vercel confirmed customer source code, credentials and database records were stolen after attackers compromised Context.ai (an AI productivity assistant connected via a saved enterprise login), with ShinyHunters claiming the data is on sale for $2 million.

Relevance: This is the first publicly-confirmed breach where a saved login between an enterprise and an AI productivity tool was the attack path — exactly the integration pattern bank employees already use with multiple AI vendors connected to corporate identity.

Consider: Ask Procurement and Identity for a list of every AI tool that holds an active enterprise login into the bank, and whether each one is still business-critical.

TechCrunch

Regulatory

EU AI Act August 2 deadline locked in after April 28 trilogue collapse — 90 days to Annex III compliance. Advisory

Signal: April 28 trilogue talks on AI Act amendments collapsed without agreement, and DLA Piper and Morrison Foerster confirm the August 2, 2026 high-risk-system effective date stands with no further extension on the table.

Relevance: Any bank system classified as high-risk under Annex III — credit decisioning, employee assessment, biometric ID — has 90 days to meet conformity-assessment, technical-documentation and post-market-monitoring duties that DNB has tied to the next on-site review cycle.

Consider: Lock the AI inventory against Annex III scope by May 16; anything not on a remediation plan by mid-May will not meet the August date in practice.

ppc.land (DLA Piper commentary)

Autoriteit Persoonsgegevens opens GDPR enforcement-policy consultation — bank response window closes May 17. Authority

Signal: The AP opened a public consultation on its GDPR enforcement policy with a May 17 written-response deadline, including AI-system fining methodology and high-risk classification of credit decisioning and KYC.

Relevance: This is the AP's first enforcement framework since the AI Act took effect and sets the calibration the regulator will apply to AI-related GDPR cases for the next 18 months — once published, the bank's positions move from input to enforcement defence.

Consider: Confirm with the privacy office that a written submission is in flight covering AI-system fining methodology and the credit-decisioning high-risk classification.

Autoriteit Persoonsgegevens

Netherlands & Sovereignty

Andrew Harrison leaves ABN AMRO Agentic AI Governance for Booking.com. CxO voice

Signal: Andrew Harrison, former Agentic AI Governance lead at ABN AMRO, announced his move to Booking.com as Senior AI Governance Specialist on May 1.

Relevance: Dutch agentic AI governance specialists are a small market, and the ABN AMRO-to-Booking.com flow shows Dutch tech employers are now actively bidding for the same talent the Dutch banks have built up over the last two years.

Consider: Ask whether your domain depends on any single AI governance specialist whose departure would stall a deliverable, and whether the retention conversation has been had within the last 90 days.

LinkedIn — Andrew Harrison (LinkedIn; original source not verified)

US bipartisan MATCH Act would ban ASML deep-ultraviolet exports and servicing to China — 10-15% of ASML revenue at stake. Media

Signal: A bipartisan US bill, the MATCH Act, proposes a total ban on ASML's deep-ultraviolet lithography exports and servicing to China, with analysts estimating 10-15% of ASML revenue affected and a knock-on effect on the broader Dutch semiconductor supplier ecosystem.

Relevance: The bank's exposure is two-sided — direct, through ASML and supplier-ecosystem corporate banking and SME lending in the Eindhoven region, and indirect, through medium-term AI compute availability if Dutch chip-making capacity contracts.

Consider: Ask whether the corporate-banking and credit teams have stress-tested the ASML-China-revenue-loss scenario for both direct ASML exposure and the second-order effect on Dutch semiconductor SMEs.

TechWireAsia

Innovation

BBVA expands OpenAI partnership — ChatGPT Enterprise rolling out to all 120,000 employees. Vendor

Signal: BBVA announced an expanded multi-year partnership with OpenAI under which ChatGPT Enterprise is being rolled out to its full 120,000-employee workforce as a productivity-tooling baseline rather than a narrow pilot.

Relevance: Universal-deployment scale at a peer European bank re-anchors what "we have AI for our employees" means — from "we offer it to those who ask" to "every employee has it as standard tooling" — and the 120,000 benchmark will be quoted in the next round of bank-AI supervisory and board conversations.

Consider: Ask the AI Chapter and HR leads whether the current bank-wide AI assistant rollout is on track to comparable saturation by year-end, and what concrete blockers sit between today and that footprint.

OpenAI (publication date unverified)

Research

Four major consulting firms independently converge: AI forces structural business redesign, not incremental improvement. Advisory

Signal: Gartner, McKinsey, Accenture and BCG each published 2026 reports within a 90-day window framing AI as a force requiring structural redesign of operating models — Gartner's CEO survey (April 23) finds 80% of CEOs expect operational-capability overhauls, and the other three reach the same conclusion from CIO, workforce and operating-model angles.

Relevance: Convergence across four independent advisory data sets shifts this from one consultancy's view to a baseline assumption boards and supervisors can be expected to share, so strategy refreshes that frame AI as an "added capability" risk reading as out of step with peer-CEO consensus.

Consider: Ask whether the bank's Q3 strategy refresh explicitly chooses between an incremental-AI and a structural-redesign track, with the choice surfaced to the board.

Gartner

On the radar

• US Fed, FSB, Treasury and SEC drafting joint Bank AI Supervisory Framework with a Q3 2026 draft expected; EU supervisors typically cite US prudential frameworks within 6-12 months. PYMNTS.com

• UK FCA names eight banks for live AI testing programme; outputs become reusable supervisory templates DNB and AFM repeatedly draw on. Retail Banker International

• Cambridge Centre for Alternative Finance: 76% of large financial institutions cannot measure AI deployment value, with the regulator-bank gap widening. Retail Banker International

• FinOut analysis shows Claude Opus 4.7 tokenizer change raises effective enterprise cost ~35% above the published per-token price even though the listed rate is unchanged. FinOut