Critical infrastructure

Credit reporting breach exposes 5.6 millions consumers through third party API

US credit reporting company 700Credit has confirmed a data breach affecting more than 5.6 million individuals after attackers exploited a compromised third-party API used to exchange consumer data with external integration partners.

An incident that originated from a supply chain failure after one partner was breached earlier in 2025 and failed to notify 700Credit.

The attackers launched a sustained, high-volume data extraction campaign starting on October 25, 2025, which operated for more than two weeks before access was shut down.

Around 20 percent of consumer records were accessed, exposing names, home addresses, dates of birth and Social Security numbers, while internal systems, payment platforms and login credentials were not compromised.

Despite the absence of financial system access, the exposed personal data significantly increases the risk of identity theft and sophisticated phishing attacks impersonating credit reporting services.

The breach has been reported to the Federal Trade Commission and the FBI, with regulators coordinating responses through industry bodies representing affected dealerships.

Individuals impacted by the incident are currently being notified and offered two years of free credit monitoring, complimentary credit reports and access to a dedicated support line.

Authorities have urged recipients to act promptly by monitoring their credit activity and taking protective measures to minimise the risk of fraud.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

No sensitive data compromised in SoundCloud incident

SoundCloud has confirmed a recent security incident that temporarily affected platform availability and involved the limited exposure of user data. The company detected unauthorised activity on an ancillary service dashboard and acted immediately to contain the situation.

Third-party cybersecurity experts were engaged to investigate and support the response. The incident resulted in two brief denial-of-service attacks, temporarily disrupting web access.

Approximately 20% of users were affected; however, no sensitive data, such as passwords or financial details, were compromised. Only email addresses and publicly visible profile information were involved.

In response, SoundCloud has strengthened its systems, enhancing monitoring, reviewing identity and access controls, and auditing related systems. Some configuration updates have led to temporary VPN connectivity issues, which the company is working to resolve.

SoundCloud emphasises that user privacy remains a top priority and encourages vigilance against phishing. The platform will continue to provide updates and take steps to minimise the risk of future incidents.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Streaming platforms face pressure over AI-generated music

Musicians are raising the alarm over AI-generated tracks appearing on their profiles without consent, presenting fraudulent work as their own. British folk artist Emily Portman discovered an AI-generated album, Orca, on Spotify and Apple Music, which copied her folk style and lyrics.

Fans initially congratulated her on a release she had not made since 2022.

Australian musician Paul Bender reported a similar experience, with four ‘bizarrely bad’ AI tracks appearing under his band, The Sweet Enoughs. Both artists said that weak distributor security allows scammers to easily upload content, calling it ‘the easiest scam in the world.’

A petition launched by Bender garnered tens of thousands of signatures, urging platforms to strengthen their protections.

AI-generated music has become increasingly sophisticated, making it nearly impossible for listeners to distinguish from genuine tracks. While revenues from such fraudulent streams are low individually, bots and repeated listening can significantly increase payouts.

Industry representatives note that the primary motive is to collect royalties from unsuspecting users.

Despite the threat of impersonation, Portman is continuing her creative work, emphasising human collaboration and authentic artistry. Spotify and Apple Music have pledged to collaborate with distributors to enhance the detection and prevention of AI-generated fraud.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Canada advances quantum computing with a strategic $92 million public investment

Canada has launched a major new quantum initiative aimed at strengthening domestic technological sovereignty and accelerating the development of industrial-scale quantum computing.

Announced in Toronto, Phase 1 of the Canadian Quantum Champions Program forms part of a wider $334.3 million investment under Budget 2025 to expand Canada’s quantum ecosystem.

The programme will provide up to $92 million in initial funding, with agreements signed with Anyon Systems, Nord Quantique, Photonic and Xanadu Quantum Technologies for up to $23 million each.

A funding that is designed to support the development of fault-tolerant quantum computers capable of solving real-world problems, while anchoring advanced research, talent, and production in Canada, rather than allowing strategic capabilities to migrate abroad.

The initiative also supports Canada’s forthcoming Defence Industrial Strategy, reflecting the growing role of quantum technologies in cryptography, materials science and threat analysis.

Technical progress will be assessed through a new Benchmarking Quantum Platform led by the National Research Council of Canada, with further programme phases to be announced as development milestones are reached.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Study warns that LLMs are vulnerable to minimal tampering

Researchers from Anthropic, the UK AI Security Institute and the Alan Turing Institute have shown that only a few hundred crafted samples can poison LLM models. The tests revealed that around 250 malicious entries could embed a backdoor that triggers gibberish responses when a specific phrase appears.

Models ranging from 600 million to 13 billion parameters (such as Pythia) were affected, highlighting the scale-independent nature of the weakness. A planted phrase such as ‘sudo’ caused output collapse, raising concerns about targeted disruption and the ease of manipulating widely trained systems.

Security specialists note that denial-of-service effects are worrying, yet deceptive outputs pose far greater risk. Prior studies already demonstrated that medical and safety-critical models can be destabilised by tiny quantities of misleading data, heightening the urgency for robust dataset controls.

Researchers warn that open ecosystems and scraped corpora make silent data poisoning increasingly feasible. Developers are urged to adopt stronger provenance checks and continuous auditing, as reliance on LLMs continues to expand for AI purposes across technical and everyday applications.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Europe risks falling behind without telecom scale, Telefónica says

Telefónica has called for a shift in Europe’s telecommunications policy, arguing that market fragmentation is undermining investment, digital competitiveness, and the continent’s technological sovereignty, according to a new blog post from the company.

In the post, Telefónica says Europe’s emphasis on maximising retail competition has produced a highly fragmented operator landscape. It cites industry data showing the average European operator serves around five million customers, far fewer than peers in the United States or China.

The company argues that this lack of scale explains Europe’s lower per-capita investment in telecoms infrastructure and is slowing the rollout of technologies such as standalone 5G, fibre networks, and sovereign cloud and AI platforms.

Telefónica points to recent reports by Mario Draghi and Enrico Letta as signs of a policy shift, with EU institutions placing greater weight on investment capacity, resilience, and dynamic efficiency alongside traditional competition objectives.

The blog post concludes that Europe faces a strategic choice between preserving fragmented markets or enabling responsible consolidation. Telefónica says carefully regulated mergers could support sustainability, reduce regional digital divides, and strengthen Europe’s digital infrastructure.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

How data centres affect electricity, prices, water consumption and jobs

Data centres have become critical infrastructure for modern economies, supporting services ranging from digital communications and online commerce to emergency response systems and financial transactions.

As AI expands, demand for cloud computing continues to accelerate, increasing the need for additional data centre capacity worldwide.

Concerns about environmental impact often focus on electricity and water use, yet recent data indicate that data centres are not primary drivers of higher power prices and consume far less water than many traditional industries.

Studies show that rising electricity costs are largely linked to grid upgrades, climate-related damage and fuel prices instead of large-scale computing facilities, while water use by data centres remains a small fraction of overall consumption.

Technological improvements have further reduced resource intensity. Operators have significantly improved water efficiency per unit of computing power, adopting closed-loop liquid cooling and advanced energy management systems.

In many regions, water is required only intermittently, with consumption levels lower than those in sectors such as clothing manufacturing, agriculture and automotive services.

Beyond digital services, data centres deliver tangible economic benefits to local communities. Large-scale investments generate construction activity, long-term technical employment and stable tax revenues, while infrastructure upgrades and skills programmes support regional development.

As cloud computing and AI continue to shape everyday life, data centres are increasingly positioned as both economic and technological anchors.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

BBVA deepens AI partnership with OpenAI

OpenAI and BBVA have agreed on a multi-year strategic collaboration designed to embed artificial intelligence across the global banking group.

An initiative that will expand the use of ChatGPT Enterprise to all 120,000 BBVA employees, marking one of the largest enterprise deployments of generative AI in the financial sector.

The programme focuses on transforming customer interactions, internal workflows and decision making.

BBVA plans to co-develop AI-driven solutions with OpenAI to support bankers, streamline risk analysis and redesign processes such as software development and productivity support, instead of relying on fragmented digital tools.

The rollout follows earlier deployments that demonstrated strong engagement and measurable efficiency gains, with employees saving hours each week on routine tasks.

ChatGPT Enterprise will be implemented with enterprise grade security and privacy safeguards, ensuring compliance within a highly regulated environment.

Beyond internal operations, BBVA is accelerating its shift toward AI native banking by expanding customer facing services powered by OpenAI models.

The collaboration reflects a broader move among major financial institutions to integrate AI at the core of products, operations and personalised banking experiences.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI reshapes cybercrime investigations in India

Maharashtra police are expanding the use of an AI-powered investigation platform developed with Microsoft to tackle the rapid growth of cybercrime.

MahaCrimeOS AI, already in use across Nagpur district, will now be deployed to more than 1,100 police stations statewide, significantly accelerating case handling and investigation workflows.

The system acts as an investigation copilot, automating complaint intake, evidence extraction and legal documentation across multiple languages.

Officers can analyse transaction trails, request data from banks and telecom providers and follow standardised investigation pathways, instead of relying on slow manual processes.

Built using Microsoft Foundry and Azure OpenAI Service, MahaCrimeOS AI integrates policing protocols, criminal law references and open-source intelligence.

Investigators report major efficiency gains, handling several cases monthly where only one was previously possible, while maintaining procedural accuracy and accountability.

The initiative highlights how responsible AI deployment can strengthen public institutions.

By reducing administrative burden and improving investigative capacity, the platform allows officers to focus on victim support and crime resolution, marking a broader shift toward AI-assisted governance in India.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI-powered grid pilot aims to cut energy costs in Ottawa

Canada has announced new federal funding to pilot AI tools on the electricity grid, backing a project designed to improve reliability, affordability and efficiency as energy demand grows.

The government of Canada will provide $6 million to Hydro Ottawa under the Ottawa Distributed Energy Resource Accelerator programme. The initiative will utilise AI-enhanced predictive analytics to forecast peak demand and help balance electricity supply and demand in near real-time.

The project will turn customer-owned technologies such as smart thermostats, electric vehicle chargers and home batteries into responsive grid resources. By aggregating them, Hydro Ottawa aims to manage local constraints and reduce costly network upgrades, starting in areas like Kanata North that are experiencing rapid growth.

Officials say the programme will give households more control over energy use while strengthening grid resilience. The pilot is also intended to serve as a model that could be scaled across other neighbourhoods and electricity systems.

The funding comes through the Energy Innovation Program, which supports innovative grid demonstrations and AI-driven energy projects. Ottawa says such initiatives are key to modernising Canada’s electricity system and supporting the transition to a low-carbon economy.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!