Following the failure of tech companies, the uranium market, which is crucial for developing power-intensive AI technologies through nuclear energy, experienced price fluctuations. The spot price of uranium dropped $3.90 per pound, settling at $67.30 per pound by Tuesday, marking a weekly decline of $6.55. Despite the price decrease, the market saw substantial activity, with 21 recorded transactions amounting to 1.8 million pounds of uranium oxide in the past week. This indicates potential emerging demand, especially from power utilities seeking prices below $70 per pound.
BMO Capital Markets analyst George Heppel maintains an optimistic long-term outlook for uranium demand, highlighting ongoing nuclear reactor constructions in China as a driving force. This growth expectation is underscored by improving economics in the carry trade, which might sustain or even boost uranium prices despite recent declines. Interestingly, as uranium prices dipped, major uranium companies like Cameco, Kazatomprom, and NexGen Energy experienced stock gains on Tuesday, signalling investor confidence in the sector’s future.
The report captures a complex financial landscape where tech stocks exhibit temporary volatility while the uranium market remains robust. Despite immediate setbacks in tech, there is a potential recovery path, and the promising outlook for uranium reflects its indispensable role in advancing AI technologies. This dual narrative of short-term market challenges and optimistic long-term growth prospects offers valuable insights into the interplay between evolving technological demands and foundational energy resources.
A fibre optic cable running under the Baltic Sea between Latvia and Sweden sustained significant damage, likely due to external factors, according to Latvian authorities. The incident prompted NATO to deploy patrol ships and launch a coordinated investigation with Sweden, where the Security Service seized control of a vessel as part of its probe. Latvian Prime Minister Evika Silina confirmed that her government is collaborating with NATO and neighboring Baltic Sea countries to determine the cause.
Senior prosecutor Mats Ljungqvist stated that investigators are conducting several actions but refrained from disclosing details due to the ongoing preliminary inquiry.
NATO’s recently launched ‘Baltic Sentry’ mission, involving naval and aerial assets, aims to safeguard critical infrastructure in the region following a series of incidents affecting cables, pipelines, and telecom links since Russia’s invasion of Ukraine in 2022. The project also includes the deployment of new technologies, including a small fleet of naval drones. Swedish Prime Minister Ulf Kristersson also emphasized close cooperation with NATO and Latvia in response to the situation.
The damaged cable, located in Sweden’s exclusive economic zone, connects Latvia’s Ventspils to Sweden’s Gotland island. The Latvian State Radio and Television Centre (LVRTC), which operates the cable, reported switching communications to alternative routes and is contracting a repair vessel. Repairs are expected to proceed more quickly than those for gas pipelines or power cables, as fibre optic cables in the Baltic Sea are typically restored within weeks.
This incident follows last month’s damage to the Finnish-Estonian Estlink 2 power line and telecom cables, reportedly caused by a Russian tanker dragging its anchor. Finnish and Swedish leaders underscored the importance of bolstering the protection of critical undersea infrastructure in the Baltic Sea. NATO also stated it reserves the right to act against ships deemed security risks while continuing to monitor the situation closely.
Denmark’s national Centre for Cybersecurity (Center for Cybersikkerhed, CCS) has identified a ‘very high’ risk of cyberattacks targeting the country’s water infrastructure following its first official assessment of threats to the sector.
According to CCS acting head Mark Fiedel, the water sector plays a vital role within Denmark’s critical infrastructure, highlighting the potential impacts of disruptions to drinking water supplies.
As an example of the risks faced by the sector, Fiedel noted an incident in December 2024 when hackers accessed a small water plant in Denmark, resulting in a temporary disruption of water services for approximately 50 households.
CCS classifies cyber threats into various categories, including cybercrime, which poses the significant risk to critical infrastructure. Ransomware attacks are among the identified threats, and in 2021, a water plant in Kalundborg reported a ransomware attack that briefly locked technicians out of IT systems.
Among the 59 bills to be introduced to the Japanese government’s review this year within next 150 days, the Active Cyber Defense Legislation stands out due to its importance for Japan’s national security.
This bill, presented to the Liberal Democratic Party (LDP) on January 16 and swiftly approved, is part of an effort to bolster Japan’s cybersecurity capabilities. We also earlier reported that Japan’s Liberal Democratic Party proposed an ‘active cyber defence’ system, allowing the government to collect telecom metadata to detect and prevent cyberattacks as part of broader national security reforms to strengthen the country’s cybersecurity capabilities.
The proposed legislation includes three main components: improving collaboration between the public and private sectors, allowing the government to access telecommunications data in cases of suspected cyberattacks, and enabling the neutralisation of attackers’ servers. Critical infrastructure sectors such as energy, transportation, and telecommunications would be required to report cyber incidents, with the government offering guidance on damage control and prevention.
The bill also grants the government the ability to monitor specific communications between Japan and foreign nations, but limits this to non-content data to address privacy concerns. In the event of a major cyberattack, the Self-Defense Forces (SDF) may be deployed to defend critical systems.
Although the bill has received widespread support, it faces legal challenges, particularly with regard to Japan’s constitutional protection of communication secrecy and its pacifist defense policies. Despite these concerns, public opinion remains favorable, with a recent poll showing 65% support for the legislation.
The government is moving forward with the proposal, aiming to enhance the protection of Japan’s critical infrastructure from increasing cyber risks. While the Japanese Communist Party opposes the bill, it has gained backing from major opposition parties, highlighting its broad political support.
A hacking group, named as GamaCopy, has been imitating the tactics of the Russia-linked threat actor Gamaredon to target Russian-speaking victims, according to research by Chinese cybersecurity firm Knownsec.
GamaCopy’s latest campaign employed phishing documents disguised as reports on Russian armed forces’ locations in Ukraine, along with the open-source software UltraVNC for remote access.
However, while GamaCopy mirrors many techniques used by Gamaredon, researchers identified notable differences. For example, GamaCopy primarily uses Russian-language victims, whereas Gamaredon typically targets Ukrainian speakers. Additionally, GamaCopy’s use of UltraVNC represents a unique element in its attack chain.
Since June 2023, GamaCopy has targeted Russia’s defense and critical infrastructure sectors. However, the group is believed to have been active even earlier, i.e. since August 2021. Knownsec’s analysis suggests that GamaCopy’s operations are part of a deliberate false-flag campaign and links the group to another state-sponsored actor known as Core Werewolf, which has similarly targeted Russian defense systems since 2021.
This discovery follows recent reports of other hacker groups, conducting cyber-espionage campaigns against Russian entities, highlighting the increasing complexity and state-backed nature of these threats.
The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have released detailed guidance aimed at software manufacturers to enhance security across the product lifecycle. This document applies to all software products and services, including on-premises software, cloud services, Software as a Service (SaaS), operational technology (OT), and embedded systems. While non-binding, the guidance encourages manufacturers to adopt secure-by-design principles and reduce risks for their customers by avoiding specific bad practices.
The guidance reflects feedback from 78 public comments and introduces three new bad practices:
Using known insecure or outdated cryptographic functions.
Hardcoded credentials.
Insufficient product support periods.
Updates also include:
Enhanced context on memory safety and multi-factor authentication (MFA), particularly for OT products.
New examples of actions to prevent SQL injection and command injection vulnerabilities.
Clear timelines for addressing Known Exploited Vulnerabilities (KEVs).
Some of the recommendation actions to software manufacturers specifically address the critical infrastructure protection. For instance, Software manufacturers are urged to:
Prevent command injection vulnerabilities: Use library functions, sanitize inputs with restrictive allowlists, and delineate command inputs.
Eliminate default passwords: Implement instance-unique, random passwords; enforce secure credentials during setup; and support phishing-resistant MFA.
Patch Known Exploited Vulnerabilities (KEVs): Issue free patches within 30 days of a KEV’s inclusion in CISA’s catalog and communicate risks to users.
Support Open Source Software(OSS): Contribute responsibly and sustainably to open-source projects relied upon.
By following this guidance, manufacturers signal their commitment to customer security and contribute to a safer software ecosystem.
Rivian, the US electric vehicle maker, and Volkswagen are in talks with other automakers about supplying them with software and electrical architecture through their joint venture. This collaboration, which began in November with Volkswagen’s $5.8 billion investment, aims to integrate advanced electrical infrastructure and Rivian’s software technology into both companies’ future EVs. Rivian’s streamlined vehicle architecture, which reduces weight and manufacturing complexity, also allows for over-the-air software updates, an area where traditional automakers have struggled to catch up.
Rivian‘s Chief Software Officer, Wassym Bensaid, revealed that other automakers are interested in the joint venture’s technology, though he declined to name them or provide details on the ongoing discussions. The venture is a key opportunity for established automakers to quickly access the technology they have long sought to develop themselves. For Rivian, the partnership provides higher volumes, better supplier deals, and a chance to reduce costs, especially important as EV demand slows.
Rivian focuses on launching its smaller, more affordable R2 SUV by 2027, while also expanding the integration of its technology into Volkswagen’s other brands. With increasing interest from additional OEMs, the joint venture is poised to become a significant player in the global EV market, particularly in the West, alongside Tesla. Analysts suggest the partnership helps Rivian address its capital concerns and positions it as a key player in the transition to software-defined vehicles.
Stargate, a new joint venture formed by OpenAI, SoftBank, and Oracle, aims to build data centres across the US to support the growing demands of AI. According to a report by the Financial Times on Thursday, these data centres will be dedicated solely to OpenAI, the company behind the popular ChatGPT. The collaboration between these tech giants underscores the increasing importance of robust infrastructure to power the next wave of AI innovation.
The exclusive focus on OpenAI’s needs comes when AI technologies rapidly expand, with the demand for high-performance computing capabilities soaring. The partnership will allow OpenAI to scale its operations and provide the necessary computing power for its cutting-edge AI models. As companies worldwide race to develop more advanced AI tools, the infrastructure provided by Stargate is expected to play a crucial role in supporting the next generation of AI services.
Oracle and SoftBank’s involvement brings significant expertise in cloud infrastructure and global telecom, making the venture a powerful alliance in the competitive AI landscape. The project highlights the growing intersection of cloud computing, data storage, and AI as companies like OpenAI push the boundaries of what AI can achieve.
ByteDance, the Chinese tech giant behind TikTok, has allocated over 150 billion yuan ($20.64 billion) for capital expenditure this year, with a significant focus on AI, according to sources familiar with the matter. About half of the investment will support overseas AI infrastructure, including data centres and networking equipment. Beneficiaries of this spending are expected to include chipmakers Huawei, Cambricon, and US supplier Nvidia, although ByteDance has denied the accuracy of the claims.
The investment aims to solidify ByteDance’s AI leadership in China, where it has launched over 15 standalone AI applications, such as the popular chatbot Doubao, which boasts 75 million monthly active users. Its international counterparts include apps like Cici and Dreamina, reflecting ByteDance’s strategy to adapt its AI offerings globally. The company also recently updated its flagship AI model, Doubao, to rival reasoning models like those developed by Microsoft-backed OpenAI.
ByteDance’s international spending aligns with its efforts to expand AI capabilities abroad amid challenges like the uncertain future of TikTok in the United States. While ByteDance’s $20 billion plan is substantial, it remains modest compared to the AI investments of US tech giants like Google and Microsoft, which spent $50 billion and $55.7 billion respectively on AI infrastructure in the past year. The spending will also bolster ByteDance’s partnerships with suppliers such as Nvidia, from which it has procured custom AI chips tailored to China despite US export restrictions.
President Donald Trump unveiled a $500 billion private-sector initiative on Tuesday aimed at transforming AI infrastructure in the US. The joint venture, called Stargate, brings together OpenAI, SoftBank, and Oracle to build 20 massive data centres and create over 100,000 jobs. Backers have committed $100 billion for immediate deployment, with the remainder spread over the next four years.
The announcement, made at the White House with SoftBank CEO Masayoshi Son, OpenAI CEO Sam Altman, and Oracle Chairman Larry Ellison in attendance, underscores America’s push to lead in AI development. Ellison revealed that the first data centres, each half a million square feet, are already under construction in Texas. These facilities aim to power advanced AI applications, including analysing electronic health records to assist doctors.
Trump attributed the project’s launch to his leadership, with executives expressing their support. “We wouldn’t have decided to do this unless you won,” Son said. However, the ambitious project arrives amid concerns over the rising energy demands of AI data centres. Trump promised to simplify energy production for these facilities, even as experts warn of potential power shortfalls across the country in the coming decade.
The announcement comes against a backdrop of surging AI investments since OpenAI’s release of ChatGPT in 2022, which sparked widespread adoption of AI across industries. Oracle and other tech stocks, including Nvidia and Dell, climbed on the news, reflecting market enthusiasm for the Stargate project.
