Critical infrastructure

China bans key mineral exports to the US

China has imposed a ban on exports of key minerals, including gallium, germanium, and antimony, to the US, citing national security concerns. The new restrictions, which take immediate effect, are part of Beijing’s broader effort to control dual-use materials that have both civilian and military applications. These minerals are critical in semiconductor production and military technology, such as infrared systems and night vision goggles. The export ban also includes graphite items, which will face stricter end-use reviews.

This move follows the US’s recent crackdown on China’s semiconductor industry, which included new export curbs targeting 140 Chinese companies. The escalation is part of the ongoing trade tensions between the two economic giants. While the US has not been a major market for these minerals this year, China’s dominance in their production, accounting for over 90% of gallium and germanium, makes the move significant for global supply chains.

Experts warn that the restrictions could further tighten access to these essential materials, particularly as prices for antimony have surged by over 200% this year. With the US also imposing its own tariffs and export controls, the situation is expected to intensify as both countries brace for continued economic rivalry, especially with President-elect Donald Trump’s stance on China.

Cybersecurity chief warns of rising cyber risks in the UK

The UK faces an escalating cyber threat from hostile states and criminal gangs, according to Richard Horne, head of the National Cyber Security Centre (NCSC). In his first major speech, Horne warned that the severity of these risks is being underestimated, citing a significant rise in cyber incidents, particularly from Russia and China. He described Russia’s cyber activity as ‘aggressive and reckless’ while noting that China’s operations are highly sophisticated with growing global ambitions.

Over the past year, the NCSC responded to 430 cyber incidents, a marked increase from the previous year. Among them, 12 were deemed especially severe, a threefold rise from 2023. The agency highlighted the growing threats to critical infrastructure and supply chains, urging both public and private sectors to strengthen their cyber defences. The UK also faces a growing number of ransomware attacks, often originating from Russia, which target key organisations like the British Library and healthcare services.

Horne emphasised the human costs of cyber-attacks, citing how these incidents disrupt vital services like healthcare and education. The rise in ransomware, often linked to Russian criminal gangs, is a major concern, and the NCSC is working to address these challenges. The agency’s review also pointed to increasing cyber activity from China, Iran, and North Korea, with these states targeting the UK’s infrastructure and private sector.

Experts like Professor Alan Woodward of Surrey University echoed Horne’s concerns, urging the UK to step up its cybersecurity efforts to keep pace with evolving threats. With adversaries growing more sophisticated, the government and businesses must act swiftly to protect the country’s digital infrastructure.

US tightens chip curbs on China in major crackdown

The United States has imposed its third major round of export controls on China’s semiconductor industry in three years, targeting 140 companies with restrictions on chipmaking equipment, software, and advanced memory chips. Among those affected are prominent firms like Naura Technology, ACM Research, and SiCarrier Technology, as well as entities linked to Huawei, a key player in China’s chip advancements.

The measures, aimed at stalling China’s progress in AI and military technologies, also introduce new licensing requirements for US and foreign companies shipping equipment with US components to China. Commerce Secretary Gina Raimondo stated the restrictions are intended to block China’s military modernisation. Despite the sanctions, Chinese officials condemned the move as “economic coercion” and vowed countermeasures.

The rules also impact allies, with restrictions extending to chipmaking equipment from countries like Singapore and South Korea, while Japan and the Netherlands are exempt. Some global players, including Dutch firm ASML, downplayed the immediate impact but acknowledged potential long-term effects. These actions come as China accelerates efforts toward self-sufficiency in semiconductor production, though it remains years behind industry leaders like Nvidia and ASML.

This latest crackdown follows the sweeping 2022 curbs on high-end chips and manufacturing tools under the Biden administration, reflecting a sustained US effort to curtail China’s access to critical technologies.

Talks continue after Telefonica deal falls through

Telefonica’s plan to sell stakes in its Peruvian fibre optic network to KKR and Entel has fallen through. The agreement, announced in July 2023, would have seen Telefonica sell 54% to private equity fund KKR and 10% to Chilean telecoms operator Entel. The deal’s failure was confirmed by Entel in a filing to the regulator, citing unspecified breaches of closing conditions.

Despite the setback, Telefonica remains in discussions with both KKR and Entel, according to a filing with the Peruvian stock market regulator. The proposed transaction valued the entire fibre network at approximately €550 million, including debt, and was expected to reduce Telefonica’s debt by €200 million.

Telefonica has been selling assets in recent years to manage its debt load and fund significant investments in 5G infrastructure. The collapse of the deal adds to the challenges the company faces in navigating its financial strategy and expanding next-generation networks.

Gas works damage causes network outage for Worldline in Italy

Payment services in Italy have largely returned to normal following significant disruptions caused by gas pipeline installations damaging network cables. French payments firm Worldline confirmed that restoration efforts, including repairs by its provider, have been effective since Friday afternoon.

The outage began on Thursday morning, during the busy Black Friday shopping period, affecting both Italian and international markets. Italian business group Fipe-Confcommercio voiced serious concerns over the disruption’s timing and impact.

Worldline revealed that local gas pipeline works had severely compromised its network connection to data centres. The company apologised for the inconvenience and promised heightened vigilance in the coming days to prevent further issues.

The Bank of Italy also monitored the situation, noting that some services remain affected. Italian payment firm Nexi expressed dissatisfaction with the response, announcing its own investigation and warning of possible further action.

UN and international agencies establish advisory body for submarine cables

The United Nationshas launched the International Advisory Body for Submarine Cable Resilience to protect critical underwater communication infrastructure.

The initiative, announced in October 2024, brings together the International Telecommunication Union (ITU), and the International Cable Protection Committee (ICPC) to address growing risks to submarine cables, facilitating over 99% of global data transmission.

The initiative follows high-profile incidents, including damage to undersea cables and will prioritise enhancing cable security, promoting global best practices, and expediting repairs. With around 150 to 200 cable damage incidents annually—mainly due to ship anchors, fishing activities, and natural disasters—the ICPC highlights the urgency of coordinated action.

Officials from Nigeria and Portugal will co-chair the 40-member advisory body. Scheduled to convene twice a year, the body’s first meeting will occur virtually in December, followed by an in-person session in Abuja, Nigeria, in February.

Submarine cable disruptions have significant consequences. Earlier this year, outages from cable cuts in Africa left 13 countries offline for days, while damage in the Red Sea caused widespread internet disruption in the Middle East.

SEMI calls for stronger EU semiconductor policy

Industry group SEMI Europe has urged the incoming European Commission to adopt a more unified industrial strategy and expand on the existing European Chips Act. The group highlighted the importance of Mario Draghi’s recommendations, including a centralised EU budget and expedited approvals for strategic high-tech initiatives, to maintain competitiveness against the US and China.

SEMI emphasised the need for additional funding to bolster Europe’s semiconductor ecosystem, particularly in light of global export restrictions on chip technology and critical minerals. Quick action on EU export policies is vital to protect strategic interests and strengthen Europe’s global influence, the group said.

While the Chips Act focuses on attracting new manufacturing, SEMI and other industry voices, like ESIA, have called for broader support. This includes incentives for ‘legacy and foundational’ chip production and innovations essential for Europe’s green transition. Together, SEMI and ESIA represent leading players such as ASML, Infineon, and STMicroelectronics.

A revamped Chips Act would not only counter state-subsidised competition from China but also enhance Europe’s semiconductor supply chain resilience, crucial for its economic and technological independence.

India introduces new rules for critical telecom infrastructure

The government of India introduced the Telecommunications (Critical Telecommunication Infrastructure) Rules, 2024, on 22 November, which require telecom entities designated as Critical Telecommunication Infrastructure (CTI) to grant government-authorised personnel access to inspect hardware, software, and data. These rules are part of the Telecommunications Act, 2023, empowering the government to designate telecom networks as CTI if their disruption could severely impact national security, the economy, public health, or safety.

The rules mandate that telecom entities appoint a Chief Telecom Security Officer (CTSO) to oversee cybersecurity efforts and report incidents within six hours, a revised deadline from the original two hours proposed in the draft rules. This brings the telecom sector in India in line with existing Telecom Cyber Security Rules and CERT-In directions, though experts argue that the six-hour window does not meet global standards and may contribute to over-regulation.

Telecom networks are already governed under the Information Technology Act, creating potential overlaps with other regulatory frameworks such as the National Critical Information Infrastructure Protection Centre (NCIIPC). The rules also raise concerns about inspection protocols and data access, as they lack clarity on when inspections can be triggered or what limitations should be placed on government personnel accessing sensitive information.

Experts have also questioned the accountability measures in case of abuse of power and the potential for government officials to access the personal data of telecom subscribers during these inspections. To implement these rules, telecom entities must provide detailed documentation to the government, including network architecture, access lists, cybersecurity plans, and security audit reports. They must also maintain logs and documentation for at least two years to assist in detecting anomalies.

Additionally, remote maintenance or repairs from outside India require government approval, and upgrades to hardware or software must be reviewed within 14 days. Immediate upgrades are allowed during cybersecurity incidents, with notification to the government within 24 hours. A digital portal will be established to manage these rules, but concerns about the lack of transparency in communications have been raised. Finally, all CTI hardware, software, and spares must meet Indian Telecommunication Security Assurance Requirements.

Starlink operations halted in Namibia for lacking licence

Namibia’s communications regulator has ordered Starlink, operated by SpaceX, to cease its operations in the country. The Communications Regulatory Authority of Namibia (CRAN) stated that the company was running a telecommunications network without the required licence.

A cease-and-desist order was issued on 26 November, demanding that Starlink immediately halt all activities. CRAN has also advised the public against purchasing or subscribing to Starlink services, warning that these actions are illegal under Namibian law.

Investigators have already confiscated unlicensed terminals from consumers and have opened criminal cases with the police. The regulator emphasised its commitment to enforcing compliance with national telecommunications regulations.

Earlier this year, Cameroon faced a similar situation, seizing equipment at ports due to licence violations. SpaceX has yet to comment on the developments in Namibia.

AWS and Telefonica Germany test quantum tech in mobile networks

Telefonica Germany has partnered with Amazon Web Services (AWS) to explore quantum technologies in its mobile network. The pilot project aims to optimise mobile tower placement, enhance security with quantum encryption, and provide insights for the development of 6G networks.

Quantum computing, known for its potential to outperform traditional systems, is expected to revolutionise industries, including telecommunications. Experts stress the importance of early engagement with prototypes to prepare for the arrival of powerful quantum systems. Telefonica’s Chief Technology & Information Officer, Mallik Rao, highlighted their proactive approach in integrating these emerging technologies.

Telefonica Germany has already made strides in modernising its network, recently migrating one million 5G customers to AWS cloud infrastructure. Plans are underway to transfer millions more over the next year and a half. Rao described the transition as smooth and beneficial for performance.

AWS and Telefonica’s collaboration underlines the growing interest among tech leaders in harnessing quantum mechanics for groundbreaking advancements in speed and security.