China’s AI Heist

The AI landscape is moving from cloud‑centric supercomputers to open‑weight models that run on everyday devices. Advances in model compression and next‑generation chips have lifted the accuracy of on‑device inference from roughly a quarter of queries in 2023 to more than two‑thirds by 2025, according to a Stanford study. This democratization lowers operating costs and gives users control over their data, but it also opens the distribution channel to any entity that can package a model for download. S. frontier systems that are small enough to embed in smartphones and laptops worldwide.

Distillation copies the capabilities of large, proprietary models while stripping away the safety layers added after training, such as alignment tuning and red‑team hardening. The result is a cheaper, faster model that often fails basic security tests; Cisco’s analysis of the Chinese DeepSeek‑R1 model showed a 50 % higher likelihood of generating vulnerable code when prompted with politically sensitive terms. Moreover, open‑weight agents like OpenClaw can execute malicious extensions directly on a user’s hardware, turning a benign AI assistant into a vector for malware. These technical gaps translate into geopolitical leverage, as billions of devices could depend on Chinese‑origin intelligence. S. policymakers are now weighing a mix of technical and trade tools to protect the open‑weight frontier.

Companies such as Anthropic, Google and OpenAI have deployed watermarking and behavioral fingerprinting, but determined adversaries can evade them. S. capabilities. Simultaneously, public funding and industry incentives aim to accelerate American open‑weight releases—Google’s Gemma 4 being a recent example—to give developers a secure, home‑grown alternative. Coordinated action with allies will be essential to prevent a lasting dependency on Chinese‑sourced AI.