Consumer protection

MTN confirms cybersecurity breach and data exposure

MTN Group has confirmed a cybersecurity breach that exposed personal data of some customers in certain markets. The telecom giant assured the public, however, that its core infrastructure remains secure and fully operational.

The breach involved an unknown third party gaining unauthorised access to parts of MTN’s systems, though the company emphasised that critical services, including mobile money and digital wallets, were unaffected.

In a statement released on Thursday, MTN clarified that investigations are ongoing, but no evidence suggests any compromise of its central infrastructure, such as its network, billing, or financial service platforms.

MTN has alerted the law enforcement of South Africa and is collaborating with regulatory bodies in the affected regions.

The company urged customers to take steps to safeguard their data, such as monitoring financial statements, using strong passwords, and being cautious with suspicious communications.

MTN also recommended enabling multi-factor authentication and avoiding sharing sensitive information like PINs or passwords through unsecured channels.

While investigations continue, MTN has committed to providing updates as more details emerge, reiterating its dedication to transparency and customer protection.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Google stopped Motorola from using Perplexity as default assistant

A senior executive at Perplexity AI has testified that Google prevented Motorola from setting the AI startup’s assistant as the default on new smartphones, citing restrictive contracts.

The testimony came during a trial seeking remedies after Google was found to have unlawfully maintained a search monopoly.

Although Motorola will preload the app, it cannot make it the default due to binding agreements with Google. Perplexity’s Chief Business Officer, described the difficulty of replacing Google’s assistant on Android phones, saying Google’s terms create an environment where device makers fear losing revenue.

The CEO added that ongoing negotiations with other companies only became possible due to pressure from the US Department of Justice’s antitrust case.

The Justice Department is asking the court to ban Google from paying for default placements, which would also affect its AI products like Gemini.

Meanwhile, Perplexity is developing its own browser, Comet, and voiced concern about any Chrome sale undermining open-source access. The company does not support OpenAI’s interest in acquiring the browser, citing past inconsistencies in its open-source commitments.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

White House condemns EU fines on Apple and Meta

The White House has strongly criticised the EU after landmark fines were imposed on Apple and Meta Platforms, describing the penalties as a ‘novel form of economic extortion’ that the US would not tolerate.

The European Commission fined Apple €500 million and Meta €200 million under the Digital Markets Act (DMA), a new law designed to rein in the power of dominant tech giants.

Rather than viewing the DMA as a fair attempt to promote market competition, US officials called it ‘discriminatory’ and claimed it unfairly targets American firms, undermines innovation, and restricts civil liberties.

The White House warned that such extraterritorial measures would be treated as trade barriers and hinted at retaliation.

At the same time, tensions were mounting on another front, with US Treasury Secretary Scott Bessent acknowledging that tariffs between the US and China were unsustainable.

He said both sides must lower their tariffs, currently as high as 145 per cent, instead of expecting unilateral moves, suggesting a potential thaw in the ongoing trade war.

President Trump, while indicating openness to cutting Chinese import duties, also threatened to raise the existing 25 per cent tariff on Canadian car imports. He said the US should focus on building its own vehicles instead of relying on foreign manufacturers.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Meta under scrutiny in France over digital Ad practices

Meta, the parent company of Facebook, is facing fresh legal backlash in France as 67 French media companies representing over 200 publications filed a lawsuit alleging unfair competition in the digital advertising market. 

The case, brought before the Paris business tribunal, accuses Meta of abusing its dominant position through massive personal data collection and targeted advertising without proper consent.

The case marks the latest legal dispute in a string of EU legal challenges for the tech giant this week. 

Media outlets such as TF1, France TV, BFM TV, and major newspaper groups like Le Figaro, Liberation, and Radio France are among the plaintiffs. 

They argue that Meta’s ad dominance is built on practices that undermine fair competition and jeopardise the sustainability of traditional media.

The French case adds to mounting pressure across the EU. In Spain, Meta is due to face trial over a €551 million complaint filed by over 80 media firms in October. 

Meanwhile, the EU regulators fined Meta and Apple earlier this year for breaching European digital market rules, while online privacy advocates have launched parallel complaints over Meta’s data handling.

Legal firms Scott+Scott and Darrois Villey Maillot Brochier represent the French media alliance.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Microsoft expands rewards for reporting AI vulnerabilities

Microsoft has announced an expanded bug bounty initiative, offering up to $30,000 for researchers who uncover critical vulnerabilities in AI features within Dynamics 365 and the Power Platform.

The programme aims to strengthen security in enterprise software by encouraging ethical hackers to identify and report risks before cybercriminals can exploit them.

Rather than relying on general severity scales, Microsoft has introduced an AI-specific vulnerability classification system. It highlights prompt injection attacks, data poisoning during training, and techniques like model stealing and training data reconstruction that could expose sensitive information.

Highest payouts are reserved for flaws that allow attackers to access other users’ data or perform privileged actions without their consent.

The company urges researchers to use free trials of its services, such as PowerApps and AI Builder, to identify weaknesses. Detailed product documentation is provided to help participants understand the systems they are testing.

Even reports that don’t qualify for a financial reward can still lead to recognition if they result in improved defences.

The AI bounty initiative is part of Microsoft’s wider commitment to collaborative cybersecurity. With AI becoming more deeply integrated into enterprise software, the company says it is more important than ever to identify vulnerabilities early instead of waiting for security breaches to occur.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Ubisoft under fire for forcing online connection in offline games

French video game publisher Ubisoft is facing a formal privacy complaint from European advocacy group noyb for requiring players to stay online even when enjoying single-player games.

The complaint, lodged with Austria’s data protection authority, accuses Ubisoft of violating EU privacy laws by collecting personal data without consent.

Noyb argues that Ubisoft makes players connect to the internet and log into a Ubisoft account unnecessarily, even when they are not interacting with other users.

Instead of limiting data collection to essential functions, noyb claims the company contacts external servers, including Google and Amazon, over 150 times during gameplay. This, they say, reveals a broader surveillance practice hidden beneath the surface.

Ubisoft, known for blockbuster titles like Assassin’s Creed and Far Cry, has not yet explained why such data collection is needed for offline play.

The complainant who examined the traffic found that Ubisoft gathers login and browsing data and uses third-party tools, practices that, under GDPR rules, require explicit user permission. Instead of offering transparency, Ubisoft reportedly failed to justify these invasive practices.

Noyb is calling on regulators to demand deletion of all data collected without a clear legal basis and to fine Ubisoft €92 million. They argue that consumers, who already pay steep prices for video games, should not have to sacrifice their privacy in the process.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Ransomware decline masks growing threat

A recent drop in reported ransomware attacks might seem encouraging, yet experts warn this is likely misleading. Figures from the NCC Group show a 32% decline in March 2025 compared to the previous month, totalling 600 incidents.

However, this dip is attributed to unusually large-scale attacks in earlier months, rather than an actual reduction in cybercrime. In fact, incidents were up 46% compared with March last year, highlighting the continued escalation in threat activity.

Rather than fading, ransomware groups are becoming more sophisticated. Babuk 2.0 emerged as the most active group in March, though doubts surround its legitimacy. Security researchers believe it may be recycling leaked data from previous breaches, aiming to trick victims instead of launching new attacks.

A tactic like this mirrors behaviours seen after law enforcement disrupted other major ransomware networks, such as LockBit in 2024.

Industrials were the hardest hit, followed by consumer-focused sectors, while North America bore the brunt of geographic targeting.

With nearly half of all recorded attacks occurring in the region, analysts expect North America, especially Canada, to remain a prime target amid rising political tensions and cyber vulnerability.

Meanwhile, cybercriminals are turning to malvertising, malicious code hidden in online advertisements, as a stealthier route of attack. This tactic has gained traction through the misuse of trusted platforms like GitHub and Dropbox, and is increasingly being enhanced with generative AI tools.

Instead of relying solely on technical expertise, attackers now use AI to craft more convincing and complex threats. As these strategies grow more advanced, experts urge organisations to stay alert and prioritise threat intelligence and collaboration to navigate this volatile cyber landscape.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Trump threatens new tariffs within weeks

President Trump has signalled a potential early end to the current 90-day pause on tariffs for countries and companies not actively seeking trade agreements with the US.

While markets initially reacted positively to signs of easing tension with China, that optimism was short-lived as the administration quickly shifted direction.

Instead of waiting out the full pause period, Trump now suggests new tariffs could be imposed within two to three weeks, with rates possibly rising from 10% to as high as 50%.

The lack of clarity over which nations or firms are targeted adds further uncertainty. Although officials initially claimed around 90 countries were engaged in trade talks, that number reportedly dropped to just 15.

A vagueness like this, combined with the unpredictable nature of US tariff policy, has unsettled international markets and raised alarm across global supply chains.

Apple, among others, has managed to avoid immediate price hikes thanks to temporary exemptions and strategic stock management. However, those exemptions are due to expire shortly, leaving the company vulnerable to rising costs.

Instead of facing only Chinese tariffs, Apple may now contend with broader duties on semiconductors and products manufactured outside China.

If tariff relief fails to materialise soon, consumers could see higher prices on future Apple products, including the upcoming iPhone 17.

Without a clearer and more consistent trade strategy from the White House, global firms may struggle to adapt, and the fragile economic recovery could face renewed strain.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

SK Telecom investigates data breach after cyberattack

South Korean telecom leader SK Telecom has confirmed a cyberattack that compromised customer data following a malware infection.

The breach was detected on 19 April, prompting an immediate internal investigation and response. Authorities, including the Korea Internet Security Agency, have been alerted.

Personal information of South Korean customers was accessed during the attack, although the extent of the breach remains under review. In response, SK Telecom is offering a complimentary SIM protection service, hinting at potential SIM swapping risks linked to the leaked data.

The infected systems were quickly isolated and the malware removed. While no group has claimed responsibility, concerns remain over possible state-sponsored involvement, as telecom providers are frequent targets for cyberespionage.

It is currently unknown whether ransomware played a role in the incident. Investigations are ongoing as officials continue to assess the scope and origin of the breach.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Baidu rolls out new AI agent Xinxiang for Android

Chinese tech giant Baidu has launched a new AI agent, Xinxiang, aimed at enhancing user productivity by assisting with tasks such as information analysis and travel planning.

The tool is currently available on Android devices, with an iOS version still under review by Apple.

According to Baidu, Xinxiang represents a shift from traditional chatbot interactions towards a more task-focused AI experience, providing streamlined assistance tailored to practical needs.

The move reflects growing competition in China’s rapidly evolving AI market.

However, the launch highlights Baidu’s ambition to stay ahead in AI innovation and offer tools that integrate seamlessly into everyday digital life.

As regulatory reviews continue, the success of Xinxiang may depend on user adoption and the speed at which it becomes available across platforms.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!