A new report from CrowdStrike, the US-based cybersecurity company, examines the evolution of cyber threats in 2024, identifying shifts toward malware-free intrusions, artificial intelligence-assisted social engineering, and cloud-related vulnerabilities.
The researchers highlight an increase in cyber activity attributed to state-linked actors, a rise in identity-based attacks, and the growing role of generative AI in cyber operations. According to the report, 79% of cyber intrusions in 2024 did not involve traditional malware, compared to 40% in 2019. Attackers increasingly relied on remote management and monitoring tools to evade security measures. The average breakout time—the time taken for an attacker to move laterally within a compromised network—decreased to 48 minutes, with some intrusions occurring in under one minute.
The report also highlights an increased reliance on exploiting vulnerabilities, particularly for initial access. More than 52% of vulnerabilities observed in 2024 were related to gaining an initial foothold in a system, underscoring the importance of securing entry points. Attackers increasingly leveraged chained vulnerability exploits—where multiple flaws are exploited in succession—to enhance their chances of success.
Cloud security incidents also saw an increase, with valid account abuse accounting for 35% of cloud-related intrusions. Attackers focused on services such as Microsoft 365 and SharePoint, as well as enterprise APIs, to gain unauthorized access and extract data. The report emphasizes that more than half of observed vulnerabilities in 2024 were related to initial access, with an increase in attacks using chained vulnerability exploits.
Generative AI played a growing role in cyber operations, including phishing, deepfake-based social engineering, and automated disinformation campaigns. The report cites activity from groups leveraging AI-powered tactics, such as the use of fake job interviews to infiltrate technology firms.
For more information on these topics, visit diplomacy.edu.
The hacker behind the $1.4 billion Bybit exploit has already laundered more than half of the stolen Ethereum, primarily swapping it for Bitcoin via THORChain. Blockchain analysts report that over $614 million has been moved in just five days, pushing THORChain’s daily transaction volumes from an average of $80 million to an astonishing $580 million. On 26 February alone, swaps reached a record $859 million.
The US Federal Bureau of Investigation has officially linked the attack to North Korean state-sponsored hackers, identifying it as part of a wider cybercrime operation. Security experts confirmed that Bybit’s core infrastructure remained intact, with the breach traced back to a compromised developer machine that injected malicious code into the Gnosis Safe UI. While the attack targeted Bybit’s cold wallet, the platform’s smart contracts were not affected.
In response, Bybit has launched a dedicated website to track the movement of stolen funds and is offering a bounty to exchanges that assist in their recovery. The incident underscores a growing trend where hackers are shifting focus from exchanges themselves to the infrastructure providers that support them.
For more information on these topics, visit diplomacy.edu.
TikTok, the popular video-sharing app owned by ByteDance, has unveiled plans to invest $8.8 billion in building data centres in Thailand over the next five years. The announcement was made by Helena Lersch, TikTok’s Vice President of Public Policy, during an event held in Bangkok on Friday. This investment marks a significant move as the company continues to expand its operations in the region.
The specific details of the investment remain unclear, particularly whether it includes a $3.8 billion agreement that was announced by Thailand’s investment board last month. The government’s investment board had previously detailed a deal aimed at boosting digital infrastructure in the country, but TikTok did not provide further clarification on the connection between the two.
This move highlights TikTok’s growing commitment to the Thai market and its broader strategy of increasing local data storage capabilities. As part of its ongoing efforts to expand its global presence, the company is investing in infrastructure to better serve its user base and meet regulatory requirements in key markets.
For more information on these topics, visit diplomacy.edu.
Europol announced on Friday that two dozen people have been arrested for their involvement in a criminal network distributing AI-generated images of child sexual abuse. This operation marks one of the first of its kind, highlighting concerns over the use of AI in creating illegal content. Europol noted that there is currently a lack of national legislation addressing AI-generated child abuse material.
The primary suspect, a Danish national, operated an online platform where he distributed the AI-generated content he created. Users from around the world paid a ‘symbolic online payment’ to access the material. The platform has raised significant concerns about the potential misuse of AI tools for such criminal purposes.
The ongoing operation, which involves authorities from 19 countries, resulted in 25 arrests, with most occurring simultaneously on Wednesday under the leadership of Danish authorities. Europol indicated that more arrests are expected in the coming weeks as the investigation continues.
For more information on these topics, visit diplomacy.edu.
Lonestar and Phison have successfully launched the first-ever lunar data centre infrastructure aboard a SpaceX Falcon 9 rocket. The mission, set to land on the moon on March 4, is a joint venture to send Phison’s Pascari solid-state drives (SSDs), packed with data from various clients, to the lunar surface. The companies plan to expand this infrastructure, with ambitions to scale up to a petabyte of storage in the coming years.
The idea of building a data centre on the moon originated in 2018, driven by the need for secure, off-Earth storage to safeguard against climate disasters and cyber-attacks. Lonestar’s CEO, Chris Stott, noted that data has become as valuable as oil, if not more precious. The SSDs were rigorously tested for space readiness, ensuring their durability for long-term use without the possibility of on-site repairs.
This mission is just the beginning, as Lonestar and Phison aim to revolutionise data storage with nearly limitless capacity and energy efficiency in space. As AI-driven demand for data storage continues to rise, this lunar project could set the stage for future space-based infrastructure, promising a new era in data management.
For more information on these topics, visit diplomacy.edu.
Taiwan’s Economy Minister Kuo Jyh-huei announced on Thursday that Taiwan Semiconductor Manufacturing Co. (TSMC) would require government approval for any overseas joint ventures, although there are no restrictions on manufacturing advanced chips abroad, except for China. This comes amid reports that TSMC is in talks to acquire a stake in Intel, a move that could stir tensions with the US, where former President Trump has expressed concerns about Taiwan taking away American semiconductor business.
Kuo reassured reporters in Taipei that Taiwan’s semiconductor industry, particularly TSMC, remains vital to the nation’s economy, describing it as the ‘sacred mountain protecting the country.’ He also clarified that while the Taiwanese government would not interfere with TSMC’s business decisions, any large overseas investments or joint ventures must be approved by Taiwan’s economy ministry, with no changes to the rules surrounding advanced chip production outside of China.
TSMC is already investing $65 billion in new factories in Arizona, where it plans to manufacture the most advanced 2-nanometre chips, though this will not occur for a few years. The government is also preparing to engage in discussions with the Trump administration over potential tariffs on Taiwanese imports, aiming to secure the best conditions for local companies in light of the ongoing trade tensions.
For more information on these topics, visit diplomacy.edu.
Amazon has unveiled Alexa+, a major upgrade to its voice assistant, integrating advanced AI to enhance interactions.
The new version can process multiple prompts in sequence, store user preferences, and manage tasks such as making reservations and sending reminders. AI-powered improvements aim to make Alexa more conversational and responsive.
The company has invested heavily in the technology, incorporating AI models through its Bedrock platform. Startup Anthropic contributed to development, with its Claude AI underpinning Alexa+.
The service will be free for Amazon Prime members, while non-Prime users will pay $19.99 per month. A phased rollout begins in March.
Alexa+ will integrate seamlessly with Amazon devices, including Ring doorbells, allowing users to access video recordings and control smart home features. It can also analyse documents, helping users understand contracts and regulations.
Industry competition remains strong, with Apple and Google also enhancing their voice assistants through AI.
Amazon hopes the overhaul will boost engagement, as Alexa usage had declined due to limited advancements. The company’s stock rose 1.7% following the announcement, reflecting investor confidence in the AI-driven update.
For more information on these topics, visit diplomacy.edu.
North Korean hackers have recorded the largest cryptocurrency theft, stealing approximately $1.5bn from the Dubai-based exchange ByBit. According to the FBI, the stolen funds have already been converted into Bitcoin and spread across thousands of blockchain addresses. The attack highlights North Korea’s growing expertise in cybercrime, with proceeds believed to be funding its nuclear weapons programme.
The notorious Lazarus Group, linked to the regime, has been responsible for several high-profile hacks, including the theft of over $1.3bn in cryptocurrency last year. Experts say the group employs advanced malware and social engineering tactics to breach exchanges and launder stolen assets into fiat currency. These funds are critical for bypassing international sanctions and financing North Korea’s military ambitions.
Beyond cybercrime, Pyongyang has deepened its ties with Russia, allegedly supplying troops and weapons in exchange for financial backing and technological expertise. Meanwhile, the regime has recently reopened its borders to a limited number of international tourists, aiming to generate much-needed foreign income. As global scrutiny intensifies, concerns are growing over North Korea’s increasing reliance on illicit activities to prop up its economy and expand its military power.
For more information on these topics, visit diplomacy.edu.
China’s embrace of DeepSeek’s AI models has expanded beyond tech companies into everyday household appliances. The startup, based in Hangzhou, has seen a surge of support from Chinese manufacturers, with home appliance giants such as Haier, Hisense, and TCL Electronics announcing plans to incorporate DeepSeek’s AI models into their products. These appliances, already equipped with voice-activated commands, are set to become even smarter with DeepSeek’s models, which promise greater accuracy and functionality.
DeepSeek has made waves in the AI sector this year, with its large language models competing against Western systems but at a fraction of the cost. This has sparked immense pride in China, where the company is seen as a testament to the country’s growing tech capabilities in the face of US efforts to limit its advancements. The company’s founder, Liang Wenfeng, has received significant recognition from Chinese authorities, and DeepSeek is expected to soon release its next-generation R2 reasoning model.
The impact of DeepSeek’s technology is already being felt across industries. From robotics to smart appliances, its AI models offer improved precision in tasks such as obstacle avoidance in robot vacuum cleaners. These devices are expected to better understand complex commands, like ‘Gently wax the wooden floor in the master bedroom but avoid the Legos,’ making everyday life more efficient and intuitive.
For more information on these topics, visit diplomacy.edu.
The UK government has introduced the Crime and Policing Bill, aiming to enhance its ability to recover proceeds from cryptocurrency-related crime. The bill sets out provisions for valuing cryptocurrency, establishes procedures for courts to recover illicit funds, and expands powers for the Crown Court to issue seizure orders. It addresses various criminal issues, including anti-social behaviour, sexual offences, and terrorism, with a specific focus on confiscating criminal assets tied to cryptocurrencies.
The legislation will grant the Crown Court additional authority to manage and confiscate money, cryptocurrency, and personal property in criminal cases. Provisions within the bill also introduce measures for the destruction of seized cryptocurrency, ensuring that the market value at the time of destruction is taken into account, with adjustments made for any changes in value.
The bill further amends existing laws, replacing magistrates’ courts with the Crown Court in handling cryptocurrency assets. These updates aim to streamline the management of confiscation orders, ensuring that cryptocurrencies can be more effectively seized, valued, and recovered in cases involving criminal activity.
For more information on these topics, visit diplomacy.edu.
