Consumer protection

Healthcare cybersecurity failures put patient safety at risk, Modat warns

Over 1.2 million internet-connected healthcare devices and systems that expose patient data have been identified in research by Modat. The United States, South Africa, and Australia topped the list, with vulnerable systems including MRI scanners, CT machines, and hospital management platforms.

Using its Modat Magnify platform, the company identified misconfigurations, weak passwords, and unpatched software as common risks. Some devices had no authentication, while others used factory-default passwords such as ‘admin’ or ‘123456’. Sensitive MRI, dental X-ray, and blood test records were accessed.

Modat worked with Health-ISAC and Dutch CERT Z-CERT for responsible disclosure, alerting organisations to secure exposed systems. CEO Soufian El Yadmani said devices should never be open to the internet without safeguards, warning that remote access must be secure.

The research stressed that healthcare cybersecurity is a patient safety issue. Outdated or unprotected devices could enable fraud, extortion, or network breaches. Regular security checks, asset inventories, and monitoring were recommended to reduce risks.

Founded in 2024, Modat uses its Device DNA dataset to catalogue internet-connected devices globally. It aims to help healthcare and other sectors close the gap between rising cyber threats and effective resilience.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Warner Bros Discovery targets password sharing on Max

Warner Bros. Discovery is preparing to aggressively limit password sharing on its Max streaming platform, beginning next month and escalating throughout 2025. The move aims to turn shared users into paying subscribers, following Netflix and Disney+ strategies.

The company plans to deploy technology that detects unusual login activity, such as access from multiple locations. Users will get gentle warnings before stricter actions like suspensions or paid upgrades are enforced.

The initiative seeks to boost revenue and reduce subscriber churn in an increasingly competitive streaming market.

While concerns remain about user dissatisfaction and possible cancellations, Warner Bros. Discovery is confident that its extensive library of popular content, including HBO, DC, and Discovery titles, will encourage loyalty.

The goal is to create a sustainable revenue model that directly supports investments in original programming.

Industry observers note that Max’s crackdown reflects broader streaming trends, where enforcing account integrity becomes essential to growth. The full impact will be clear by the end of 2025, possibly shaping future subscription management.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Trump executive order opens 401(k) plans to crypto

US President Donald Trump signed an executive order to include cryptocurrencies and other alternative assets in 401(k) retirement accounts. The initiative aims to reduce regulatory and legal hurdles that have limited retirees from accessing higher returns and greater asset diversification.

The Secretary of Labour and SEC have been tasked with easing access to alternative investments in defined contribution plans. The order also calls for clarifying or revising existing rules to reduce industry legal uncertainties.

Despite the opportunity for higher returns, critics caution that these investments come with increased risks, less transparency, and higher fees than traditional retirement options.

Recent legislative activity reflects growing US government attention to digital assets. The Senate passed a bill regulating stablecoins, introducing reserve requirements and consumer protections.

Experts highlight that cryptocurrencies have evolved beyond speculative assets. They have become integrated into the global financial system and are sensitive to changes in regulatory and political landscapes.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Visa boosts cyber defence support for clients

Visa has launched a new Cybersecurity Advisory Practice to support businesses in identifying and countering growing cyber risks. The initiative aims to provide practical insights tailored to clients of all sizes.

The practice will be powered by Visa Consulting & Analytics, which brings together a global team of consultants, product specialists and data scientists. Services include training, threat analysis and cybersecurity maturity assessments.

Jeremiah Dewey, a veteran with over 20 years of experience in the field, has been named global head of cyber products. He will lead product development and build strategic partnerships.

Visa says the goal is to offer scalable solutions to both small businesses and large enterprises, enabling them to stay resilient in an evolving digital threat market.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Colorado’s AI law under review amid budget crisis

Colorado lawmakers face a dual challenge as they return to the State Capitol on 21 August for a special session: closing a $1.2 billion budget shortfall and revisiting a pioneering yet controversial law regulating AI.

Senate Bill 24-205, signed into law in May 2024, aims to reduce bias in AI decision-making affecting areas such as lending, insurance, education, and healthcare. While not due for implementation until February 2026, critics and supporters now expect that deadline to be extended.

Representative Brianna Titone, one of the bill’s sponsors, emphasised the importance of transparency and consumer safeguards, warning of the risks associated with unregulated AI. However, unexpected costs have emerged. State agencies estimate implementation could cost up to $5 million, a far cry from the bill’s original fiscal note.

Governor Polis has called for amendments to prevent excessive financial and administrative burdens on state agencies and businesses. The Judicial Department now expects costs to double from initial projections, requiring supplementary budget requests.

Industry concerns centre on data-sharing requirements and vague regulatory definitions. Critics argue the law could erode competitive advantage and stall innovation in the United States. Developers are urging clarity and more time before compliance is enforced.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

United Airlines grounds mainline flights amid tech glitch

An unexpected technical issue led United Airlines to temporarily ground all its mainline flights across key US airports. The disruption affected hundreds of departures, notably at hubs like Newark, San Francisco and Denver.

United Express flights remained unaffected, and in‑air services continued as planned. The airline reassured customers that safety was the top priority while staff worked to restore systems.

So far around 827 flights have been delayed and 23 cancelled. United confirmed that a cyberattack was not to blame for the outage.

Passengers reported delayed departures due to missing system data needed for take‑off. The airline noted delays may persist into the evening as technical fixes are completed

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

US court system suffers sweeping cyber intrusion

A sweeping cyberattack has compromised the federal court filing system across multiple US states, exposing sensitive case data and informant identities. The breach affects core systems used by legal professionals and the public.

Sources say the Administrative Office of the US Courts first realised the scale of the hack in early July, with authorities still assessing the damage. Nation-state-linked actors or organised crime are suspected.

Critical systems like CM/ECF and PACER were impacted, raising fears over sealed indictments, search warrants and cooperation records now exposed. A dozen dockets were reportedly tampered with in at least one district.

Calls to modernise the ageing court infrastructure have intensified, with officials warning of rising cyber threats and the urgent need for system replacements.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

OpenAI expands reach with models now accessible on AWS platforms

Amazon Web Services (AWS) now offers access to OpenAI’s gpt‑oss‑120b and gpt‑oss‑20b models through both Amazon Bedrock and SageMaker JumpStart. Bedford’s unified API lets developers experiment and switch models without rewriting code, while SageMaker offers fine‑tuning, deployment pipelines, and robust enterprise controls.

AWS CEO Matt Garman celebrated the partnership as a ‘powerhouse combination’, noting that the models outperform comparable options, claiming they are three times more price-efficient than Gemini and five times more than DeepSeek‑R1, when deployed via Bedrock.

Rich functionality comes with these models: wide context capacity, chain-of-thought transparency, adjustable reasoning levels, and compatibility with agentic workflows. Bedrock offers secure deployment with Guardrails support, while SageMaker enables experimentation across AWS regions.

Financial markets took notice. AWS stock rose after the announcement, as analysts viewed the pairing with OpenAI’s open models as a meaningful step toward boosting its AI offerings amid fierce cloud rivalry.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Google adds clever email safety feature

Thanks to a new feature that shows verified brand logos, Gmail users will now find it easier to spot phishing emails. The update uses BIMI, a standard that allows trusted companies to display official logos next to their messages.

To qualify, brands must secure their domain with DMARC and have their logos verified by authorities such as Entrust or DigiCert. Once approved, they receive a Verified Mark Certificate, linking their logo to their domain.

The feature helps users quickly distinguish between genuine emails and fraudulent ones. Early adopters include Bank of America in the US, whose logo now appears directly in inboxes.

Google’s move is expected to drive broader adoption, with services like MailChimp and Verizon Media already supporting the system. The change could significantly reduce phishing risks for Gmail’s vast user base.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

WhatsApp shuts down 6.8 million scam accounts

As part of its anti-scam efforts, WhatsApp has removed 6.8 million accounts linked to fraudulent activity, according to its parent company, Meta.

The crackdown follows the discovery that organised criminal groups are operating scam centres across Southeast Asia, hacking WhatsApp accounts or adding users to group chats to lure victims into fake investment schemes and other types of fraud.

In one case, WhatsApp, Meta, and OpenAI collaborated to disrupt a Cambodian cybercrime group that used ChatGPT to generate fake instructions for a rent-a-scooter pyramid scheme.

Victims were enticed with offers of cash for social media engagement before being moved to private chats and pressured to make upfront payments via cryptocurrency platforms.

Meta warned that these scams often stem from well-organised networks in Southeast Asia, some exploiting forced labour. Authorities continue to urge the public to remain vigilant, enable features such as WhatsApp’s two-step verification, and be wary of suspicious or unsolicited messages.

It should be mentioned that these scams have also drawn political attention in the USA. Namely, US Senator Maggie Hassan has urged SpaceX CEO Elon Musk to act against transnational criminal groups in Southeast Asia that use Starlink satellite internet to run massive online fraud schemes targeting Americans.

Despite SpaceX’s policies allowing service termination for fraud, Starlink remains active in regions where these scams, often linked to forced labour and human trafficking, operate.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!