Cybersecurity

Meta, X, Google join EU code to combat hate speech

Major tech companies, including Meta’s Facebook, Elon Musk’s X, YouTube, and TikTok, have committed to tackling online hate speech through a revised code of conduct now linked to the European Union’s Digital Services Act (DSA). Announced Monday by the European Commission, the updated agreement also includes platforms like LinkedIn, Instagram, Snapchat, and Twitch, expanding the coalition originally formed in 2016. The move reinforces the EU’s stance against illegal hate speech, both online and offline, according to EU tech commissioner Henna Virkkunen.

Under the revised code, platforms must allow not-for-profit organisations or public entities to monitor how they handle hate speech reports and ensure at least 66% of flagged cases are reviewed within 24 hours. Companies have also pledged to use automated tools to detect and reduce hateful content while disclosing how recommendation algorithms influence the spread of such material.

Additionally, participating platforms will provide detailed, country-specific data on hate speech incidents categorised by factors like race, religion, gender identity, and sexual orientation. Compliance with these measures will play a critical role in regulators’ enforcement of the DSA, a cornerstone of the EU’s strategy to combat illegal and harmful content online.

Meta invests in solar energy to power data centre expansion

Meta has announced a deal to purchase 200 megawatts of solar power from multinational utility Engie. The move bolsters the tech giant’s renewable energy portfolio, which now exceeds 12 gigawatts. The new solar farm, located in Texas, is near one of Meta’s existing data centres and is expected to become operational by 2025.

The push for renewable energy comes as tech companies face rising power demands driven by AI development and the rapid construction of data centres. Meta recently revealed plans for a 2-gigawatt data centre in Louisiana, relying on natural gas. The firm has also expressed interest in nuclear power, seeking proposals for up to 4 gigawatts of nuclear energy by the early 2030s.

While nuclear energy garners significant attention, renewable sources are crucial in powering today’s tech infrastructure. Meta’s solar energy deal mirrors efforts by other tech giants like Google and Microsoft, which have secured multi-billion-dollar renewable energy agreements. As companies race to meet energy needs, the speed of renewable energy deployment continues to offer a competitive edge over emerging nuclear options.

Russian hackers target global officials with WhatsApp phishing campaign

Russian state-linked hackers, operating under the unit Star Blizzard, have launched a new phishing campaign targeting the WhatsApp accounts of government ministers and officials worldwide. According to Britain’s National Cyber Security Centre (NCSC), Star Blizzard, linked to Russia’s FSB spy agency, aims to undermine political trust in the UK and other similar nations.

Victims receive an email impersonating a US government official, inviting them to join a WhatsApp group. The email contains a QR code that, when scanned, links the victim’s WhatsApp account to an attacker-controlled device or WhatsApp Web, granting the hacker access to sensitive messages. Microsoft confirmed that this tactic allows hackers to exfiltrate data but did not specify whether data was successfully stolen.

The campaign has targeted individuals involved in diplomacy, defence, and Ukraine-related initiatives. This marks the latest attempt by Star Blizzard, which had previously targeted British MPs, universities, and journalists. Microsoft noted that while the campaign seemed to have wound down by November, the use of QR codes in phishing attacks, or ‘quishing,’ shows the hackers’ continued efforts to gain access to sensitive information.

WhatsApp, owned by Meta, emphasised that users should avoid scanning suspicious QR codes and should only link their accounts through official services. Experts also recommend verifying suspicious emails by contacting the sender directly through a known, trusted email address.

EU cybersecurity certification faces delays amid political disputes

Progress on the EU Cybersecurity Certification Scheme (EUCS), stuck in a deadlock since 2019, remains uncertain as discussions are unlikely to advance in the first half of 2025. Despite efforts by Poland, which is leading the EU ministerial meetings until July, disagreements over sovereignty requirements continue to stall the process. The EUCS aims to help companies demonstrate that their ICT solutions meet cybersecurity standards for the EU market but has faced resistance, particularly from France, which wants to preserve its certification system, SecNum Cloud.

The European Cybersecurity Certification Group (ECCG) from ENISA has yet to provide an opinion on the scheme, with its next meeting possibly taking place in February. Poland plans to prioritise cybersecurity during its presidency, hosting key events like an informal telecom minister meeting in March and a conference on ENISA standardisation, though industry groups remain sceptical about a breakthrough.

Lobbyists, including the global software industry group BSA, have criticised the delays. They argue that cybersecurity standards should focus on technical protections rather than political considerations and have urged the Commission to adopt the scheme quickly to strengthen Europe’s cybersecurity resilience.

Further complicating matters, the EU Cybersecurity Act (CSA), which underpins ENISA’s authority to create certification schemes, is under evaluation but has not yet been revised. Of the three certification schemes proposed since 2019, only one has been adopted, with another for 5G still in progress. New EU Commissioner Henna Virkkunen has pledged to improve the adoption process for cybersecurity certification schemes as part of her mission to bolster Europe’s technological sovereignty and security.

Breach exposes FBI data links

A major data breach involving telecom provider AT&T has compromised sensitive information about FBI agents’ call and text logs. The incident, which occurred last year, exposed phone numbers and contact details, though not the content of communications. FBI officials warn that the breach may risk revealing the identities of confidential informants.

AT&T reported in July that hackers had stolen records linked to 109 million customer accounts. Among the stolen data were months of FBI call logs, potentially connecting agents to their sources. While AT&T claims to have collaborated with law enforcement to mitigate the damage, the FBI continues to prioritise protecting its informants.

The breach has reignited concerns about cyber-espionage targeting US telecom networks. Earlier this month, the US national security adviser highlighted ongoing threats from Chinese-linked cyber operations. Although telecom firms, including AT&T and Verizon, say their systems are now secure, the incident underscores the persistent risks posed by sophisticated hackers.

Donald Trump rebrings TikTok online

TikTok began restoring its services in the US on Sunday after President-elect Donald Trump announced plans to revive the app upon taking office on Monday. Speaking at a rally ahead of his inauguration, Trump assured his supporters that TikTok, a platform used by 170 million Americans, would be brought back online through a joint venture that protects national security. Hours earlier, TikTok users had received a message crediting Trump for the app’s restoration efforts.

TikTok ceased operations late Saturday after a law banning the platform on national security grounds came into effect. The shutdown sparked a frenzy among users and businesses dependent on the app, with web searches for VPNs surging and concerns mounting over disruptions to TikTok Shop transactions. The app’s temporary return relieves millions, but important questions remain about its long-term future in the US.

Trump’s pledge to extend the ban’s enforcement period to facilitate a deal marks a shift from his stance in 2020 when he sought to ban TikTok over concerns that its Chinese parent company, ByteDance, was sharing user data with Beijing. Trump now calls for a joint venture, proposing a 50% US ownership stake while guaranteeing that service providers would not face penalties for restoring TikTok.

Despite Trump’s assurances, the law mandating TikTok’s divestiture remains contentious. Republican lawmakers, including Senators Tom Cotton and Pete Ricketts, have criticised any attempt to circumvent the law, insisting that ByteDance sever all ties with China to meet the divestiture requirements. Meanwhile, TikTok’s ongoing connection to China continues to fuel tensions in US-China relations, with Beijing accusing Washington of unfairly targeting Chinese companies.

TikTok’s temporary return has reignited debates over its valuation, reportedly as high as $50 billion, and potential suitors, including former Los Angeles Dodgers owner Frank McCourt and billionaire Elon Musk. While Beijing has reportedly discussed a possible sale, ByteDance denies such plans. Separately, US startup Perplexity AI has proposed merging with TikTok’s US operations to create a new entity.

The platform’s restoration signals its cultural and economic significance, but it also highlights the geopolitical complexities of its existence. Whether TikTok ultimately secures a deal or faces renewed legal battles, its journey reflects the growing and complicated intersection of technology, digital policies, cyber diplomacy, politics, and global commerce.

TikTok’s abrupt shutdown shakes the USA

TikTok’s future in the US took a dramatic turn late Saturday as the app went offline ahead of a Sunday deadline mandated by US law. The US government’s move, affecting 170 million US users, marks an unprecedented shutdown of one of the world’s most influential social media platforms.

The persistence of the US officials to ban TikTok stems from concerns over the platform’s ties to its Chinese parent company, ByteDance, and potential risks to national security. As users grapple with the platform’s disappearance, President-elect Donald Trump has hinted at a possible 90-day extension to allow time for a resolution.

The shutdown comes after the Supreme Court upheld a law requiring TikTok to sever ties with ByteDance or cease US operations. ByteDance’s other apps, such as CapCut and Lemon8, were also removed from US app stores.

TikTok issued a message to users acknowledging the shutdown and expressing hope for a political resolution under the Trump administration, which takes office Monday 20 January 2025. Trump has indicated that he will announce an extension early next week.

The app’s disappearance has sparked many reactions among users, businesses, and competitors. Social media platforms like RedNote, Meta, and Snap have seen an influx of users and investor interest, while many TikTok creators expressed sadness and uncertainty online. Virtual private network (VPN) searches surged as users sought workarounds to access the platform, highlighting the app’s deep integration into American culture and commerce.

Despite the shutdown, speculation continues about TikTok’s future. ByteDance has reportedly been discussing with potential buyers, including billionaire Elon Musk and other US-based entities. Meanwhile, TikTok CEO Shou Zi Chew is set to attend Trump’s inauguration, signalling possible negotiations to keep the platform operational. Proposals from new suitors, such as US search engine startup Perplexity AI, further illustrate the high stakes and value of TikTok’s US operations, which are estimated to be worth up to $50 billion.

The uncertainty has created a ripple effect, with businesses that rely on TikTok for marketing and e-commerce scrambling to adapt. Many worry about the broader implications of this shutdown, which has deepened tensions between Washington and Beijing.

The prospect of a political compromise looms as Trump prepares to take office, but whether TikTok can return to US screens remains uncertain. The platform’s sudden disappearance underscores the complex intersection of technology, geopolitics, and commerce, leaving millions of users and businesses in limbo.

New Nvidia microservices address key security concerns in AI agents

Nvidia has launched three new NIM microservices designed to help enterprises control and secure their AI agents. These services are part of Nvidia NeMo Guardrails, a collection of software tools aimed at improving AI applications. The new microservices focus on content safety, restricting conversations to approved topics, and preventing jailbreak attempts on AI agents.

The content safety service helps prevent AI agents from generating harmful or biased outputs, while the conversation filter ensures discussions remain on track. The third service works to block attempts to bypass AI software restrictions. Nvidia’s goal is to provide developers with more granular control over AI agent interactions, addressing gaps that could arise from broad, one-size-fits-all policies.

Enterprises are showing growing interest in AI agents, though adoption is slower than anticipated. A recent Deloitte report predicts that by 2027, half of enterprises will be using AI agents, with 25% already implementing or planning to do so by 2025. Despite widespread interest, the pace of adoption remains slower than the rapid development of AI technology.

Nvidia’s new tools are designed to make AI adoption more secure and reliable. The company hopes these innovations will encourage enterprises to integrate AI agents into their operations with greater confidence, but only time will tell whether this will be enough to accelerate widespread usage.

Indian startups join US space and defence program

Seven Indian startups have been selected for a groundbreaking India-US space and defence collaboration program, opening doors to the world’s largest defence and space market. The program, launched in September 2024 by Indian investor Indusbridge Ventures and US-based FedTech, focuses on defence and dual-use technologies. Among the selected companies are space imaging firm KaleidEO, rocket manufacturer EtherealX, and AI-driven Shyam VNL, all of which will explore opportunities with US agencies like the Defense Innovation Unit and the Department of Defense.

The initiative offers Indian startups access to resources, mentorship, and collaborations with US industry leaders such as Northrop Grumman, Lockheed Martin, and RTX. According to sources, these partnerships could provide a competitive advantage in the $1.5 billion annual market for niche technologies and potentially generate revenues between $500 million and $1 billion annually. Discussions are already underway on specific projects, although details remain under wraps.

This development aligns with recent diplomatic efforts to strengthen India-US ties in defence and space technology. Indian National Security Advisor Ajit Doval and US counterpart Jake Sullivan recently met in New Delhi to discuss enhancing collaboration between the US Defense Innovation Unit and India’s Innovations for Defense Excellence. The program is a significant step toward fostering innovation and boosting private-sector cooperation between the two nations in strategic sectors.

Chinese tech company Zhipu questions US trade ban

Beijing-based AI company Zhipu Huazhang Technology has opposed the US government’s plan to add it to the export control entity list. The company argues the decision lacks a factual basis.

Zhipu issued a statement on its official WeChat account expressing strong opposition to the move. The firm criticised the US commerce department’s intentions, insisting the decision was unjustified.

Zhipu and its subsidiaries face restrictions on accessing US technologies if added to the list. The company maintains it operates lawfully and transparently in its business practices.

The US has been increasing scrutiny on Chinese technology firms, citing national security concerns. Zhipu emphasised its commitment to responsible technology development and cooperation with global partners.

Diplo chatbot can make mistakes. Consider checking important information.