Cybersecurity

US launches national security unit to combat cyberattacks on telecom sector

The Federal Communications Commission (FCC) has launched a national security unit in response to recent cyber incidents affecting US telecommunications firms.

These incidents, attributed to a group known as Salt Typhoon, involved unauthorised access to sensitive data and communications.

The newly formed unit will be led by Adam Chan, FCC’s national security counsel, and will include representatives from eight different bureaus and offices within the agency. The council’s objectives are to:

  • Reduce reliance on foreign entities in the US telecom and technology supply chains.
  • Address vulnerabilities related to cyber threats, espionage, and surveillance.
  • Support U.S. leadership in critical technologies, including 5G, satellites, quantum computing, IoT, and robotics.

Cybersecurity experts have emphasised the importance of securing digital infrastructure against advanced threats. The telecommunications sector, despite its established cybersecurity measures, continues to face persistent and evolving risks.

Recent reports indicate that Salt Typhoon has continued targeting US telecom networks, with activity observed as recently as February.

The FCC has taken several steps in recent months to enhance industry security, and the formation of this council represents a further effort to strengthen resilience.

For more information on these topics, visit diplomacy.edu.

ICC Office of the Prosecutor invites public input on draft policy for cyber-enabled crimes

The Office of the Prosecutor of the International Criminal Court invites public comments on its draft policy addressing cyber-enabled crimes under the Rome Statute.

The Office encourages participation from all relevant stakeholders, including States Parties, civil society organisations, private sector entities, and experts in the field.

Contributions will support the development of a final policy paper that will guide the Office’s approach to cyber-related conduct within its jurisdiction, including its investigative and prosecutorial activities.

The policy paper builds on the crimes outlined in the Rome Statute, assessed within the broader framework of international law.

It aims to enhance transparency regarding the Office’s work in this area and contribute to discussions on legal standards, best practices, and frameworks for cooperation, including those relevant to national authorities.

The draft policy clarifies that the Court does not have jurisdiction over common cybercrimes, such as fraud or unauthorised access to computer systems, which are typically addressed under national laws.

While some countries have international obligations to prosecute these crimes under specific treaties, they do not fall within the mandate of the Court. However, national efforts to combat such crimes may sometimes overlap with the Court’s work where they intersect with crimes under its jurisdiction.

To date, cyber-related issues have only been considered at the periphery of the Court’s work, and their legal and practical implications have yet to be fully explored.

Investigating and prosecuting cyber-enabled crimes presents new and complex challenges. This policy sets out the Office’s current position on these issues while recognising that certain matters may only be fully addressed as the Court’s practice in this area develops.

As with any crime under the Court’s jurisdiction, cyber-enabled crimes will be assessed based on their gravity—including their scale, nature, manner of commission, and impact.

The Court focuses on crimes of the most serious international concern, typically those causing widespread harm to large populations.

An exception applies to offences against the administration of justice, which are not subject to a gravity threshold but are considered serious due to their impact on the Court’s ability to function.

For more information on these topics, visit diplomacy.edu.

Pavel Durov granted temporary leave from France in legal case

French authorities have granted Pavel Durov, the Russian-born founder and CEO of Telegram, temporary permission to leave France.

Durov was placed under formal investigation last August over alleged criminal activities on the messaging platform and had been barred from leaving the country. He departed for Dubai on Saturday after an investigating judge approved his temporary absence.

The legal probe has heightened tensions between France and Russia, particularly against the backdrop of the war in Ukraine.

Prosecutors suspect Durov of complicity in allowing illegal activities such as drug trafficking and money laundering on Telegram. As part of his legal obligations, he was required to post bail of 5 million euros ($5.4 million).

Being under formal investigation in France does not imply guilt but indicates that judges believe there is sufficient evidence to continue the case. The Paris prosecutor’s office has not commented on the latest developments.

For more information on these topics, visit diplomacy.edu.

EU delays ETIAS launch until late 2026

The European Union has announced that the ETIAS (European Travel Information and Authorisation System) will require visa-free travellers from non-EU countries, including the UK, to obtain authorisation before short stays in the Schengen Area.

Initially planned for 2026, the system has been delayed and is now set to launch in late 2026, with full implementation not expected until 2027. The ETIAS aims to improve border security and will apply to travellers from 60 non-EU countries who don’t need a visa.

To apply for the ETIAS, travellers will need to complete an online application, provide personal details, answer security questions, and pay a €7 fee.

However, this authorisation will be linked to the traveller’s passport and remain valid for three years, or until the passport expires. Also, children under 18 and adults over 70 will be exempt from the fee, though they still need to apply for authorisation.

The ETIAS will not become mandatory until six months after the EU’s Entry/Exit System (EES) is fully operational. The EES, which is set to launch in phases starting in October 2025, will be a registration system for non-EU travellers, including those from the UK and US.

However, due to delays in the installation of necessary technology at Schengen borders, the launch of the ETIAS has been pushed back to late 2026.

For more information on these topics, visit diplomacy.edu.

BMW to equip cars with Huawei HiCar system

BMW will integrate Huawei’s HiCar system into its locally produced models starting in 2026, strengthening its presence in the Chinese market.

The partnership will enable seamless connectivity between Huawei devices and BMW vehicles, enhancing smart driving applications through the Harmony operating system.

The German automaker emphasised its commitment to deeper collaboration with Chinese partners, aiming to integrate them more closely into its global innovation network.

By working with local suppliers, BMW seeks to foster long-term cooperation and technological advancement in one of the world’s largest automotive markets.

An approach that aligns with BMW’s broader strategy of leveraging local expertise to remain competitive in a fast-evolving automotive landscape.

For more information on these topics, visit diplomacy.edu.

Infosys resolves cybersecurity lawsuits in the US

Indian IT services giant Infosys has settled lawsuits filed against its US subsidiary, Infosys McCamish Systems, for $17.5 million. The lawsuits stem from a cyber incident that occurred in November 2023, which resulted in the compromise of personal data. The company has agreed to pay the settlement into a fund that will resolve all claims related to the breach.

The breach, which involved unauthorised access and data exfiltration, affected up to 6.5 million individuals. Following the incident, Infosys McCamish in the US, in coordination with a third-party vendor, took steps to address the issue and limit the damage caused by the cyberattack.

This settlement marks a significant step for Infosys in resolving the ongoing legal issues stemming from the 2023 incident. The Indian company has worked to resolve the situation while continuing to bolster its cybersecurity measures to prevent future breaches.

For more information on these topics, visit diplomacy.edu.

Europe’s tech giants push for sovereign fund

More than 90 European technology companies and lobby groups, including Airbus and Dassault Systèmes, have called on European Commission President Ursula von der Leyen to establish a sovereign infrastructure fund.

In an open letter dated 14 March, they emphasised the urgent need for Europe to strengthen its strategic autonomy in critical digital infrastructure, from AI frameworks to semiconductor manufacturing.

The letter warns that Europe’s reliance on foreign technology creates security risks and weakens economic growth. It highlights the importance of public investment, particularly in capital-intensive sectors like quantum computing and microchips. The signatories also suggest a ‘buy European’ policy in government procurement to boost demand and encourage local businesses to invest.

Prominent supporters of the initiative include French cloud provider OVH Cloud, the European Software Institute, and the German AI Association. The appeal also reached EU tech chief Henna Virkkunen, as Europe faces increasing pressure to compete with major US and Asian technology powers.

For more information on these topics, visit diplomacy.edu.

Thailand approves millions for data centres

Thailand has approved investments worth 90.9 billion baht ($2.7 billion) in data centres and cloud services, further boosting its growing tech sector. The newly approved projects include data centres by China’s Beijing Haoyang Cloud&Data Technology, Singapore-based Empyrion Digital, and Thailand’s GSA Data Center 02, according to the country’s investment board.

Among these, Beijing Haoyang plans to build a 300-megawatt data centre valued at 72.7 billion baht, while GSA Data Center 02 is investing 13.5 billion baht in a 35-megawatt facility.

The rapid rise of AI has fuelled demand for data infrastructure across Southeast Asia, making Thailand an attractive hub for investment. In January, TikTok’s parent company, Bytedance, announced plans to establish a data hosting service in Thailand worth 126.8 billion baht.

It follows significant investments from tech giants such as Google, which pledged $1 billion last year, and Amazon Web Services, which committed $5 billion over 15 years.

Microsoft has also revealed plans to open its first regional data centre in Thailand, reinforcing the country’s status as a growing digital hub in the region. With an increasing number of global technology firms choosing Thailand for data operations, the country is set to play a key role in Southeast Asia’s evolving digital economy.

For more information on these topics, visit diplomacy.edu.

China announces mandatory AI labelling requirements

Chinese authorities have announced new regulations requiring AI-generated content to be clearly labelled, with the rules set to take effect on 1 September 2025. Officials said the move aims to ensure transparency and support the ‘healthy development’ of AI.

The decision follows global discussions on the risks associated with AI-generated media, including misinformation and deepfakes.

By mandating labelling, China seeks to enhance accountability and distinguish AI-created content from human-generated material.

The new rules reflect the government’s ongoing efforts to regulate emerging technologies while maintaining control over digital information.

With AI playing an increasing role in content creation, policymakers worldwide are considering similar measures.

China’s regulations are expected to influence international approaches to AI governance as other nations evaluate their own strategies for handling AI-generated content.

For more information on these topics, visit diplomacy.edu.

Chinese hedge funds boost AI for competitive edge

China’s hedge fund industry is undergoing a transformative shift, spurred by High-Flyer’s integration of AI in its trading strategies. The multi-billion-dollar fund not only uses AI to enhance its portfolio but also created DeepSeek, a game-changing LLM that has disrupted the dominance of Western AI firms like those in Silicon Valley.

The breakthrough has ignited an AI arms race among Chinese asset managers, including firms like Baiont Quant, Wizard Quant, and Mingshi Investment Management, as they rush to incorporate AI into their investment workflows.

AI-powered trading has gained momentum, with many hedge funds now using AI to process market data and generate trading signals based on investor risk profiles. As competition for “alpha” (outperformance) intensifies, the demand for AI talent is surging.

Companies like Wizard Quant and Mingshi are actively recruiting top AI engineers, and even mutual funds, such as China Merchants Fund, have adopted DeepSeek to boost their efficiency. The open-source model has democratised access to AI, lowering the entry barrier for smaller Chinese funds, which had previously been unable to compete with their Western counterparts due to high costs.

For more information on these topics, visit diplomacy.edu.

Diplo chatbot can make mistakes. Consider checking important information.