AI Phone With Full System Access
Okay this one's interesting. Chinese AI company StepFun just unveiled STEPX Neo, which they're calling the first "large-model-native" AI phone. Not just a phone with a chatbot bolted on — the whole OS, called Step AOS, is rebuilt from the ground up so an AI agent (they call it "Amoo") runs the show instead of you tapping around apps.
Here's the part that caught my attention as a security person. Step AOS breaks the entire OS down into tiny callable units — comms, apps, files, system — using something they're calling an MCP-standard "atomic capability engine." Basically the agent can reach into almost anything on your phone and act on your behalf. Book a ride, pay a bill, edit a doc, whatever.
StepFun says they've thought about the obvious problem here (an AI with root-level access to your whole digital life is a juicy target) and built in a "trusted, visible, controllable, reversible" framework — sandboxed execution, audit logs for every action, permissions granted per-task instead of standing access, and a one-tap undo for mistakes. They even co-published a security whitepaper with the Shanghai AI Lab and say they're working toward a national standard for agent security.
Honestly, that's the right instinct — agent-native phones are coming whether we like it or not, and "least privilege + audit trail + undo button" is a decent starting framework. But it's also exactly the kind of claim I want to see independently tested before I trust it. Self-reported security frameworks from the same company selling the product are... not evidence. Especially when the phone integrates deeply with apps like Alipay, Meituan, and Didi — real money, real location data, real personal info flowing through an agent layer.
No pricing or release date yet. Worth watching how this actually holds up once it's in real hands, not just on a launch stage.
Sources:Wall Street CN