Cybersecurity

ENISA launches consultation on EU digital wallet certification

The European Union Agency for Cybersecurity (ENISA) has launched a public consultation on a draft candidate certification scheme for the EU Digital Identity (EUDI) Wallets.

The draft was developed with a dedicated ad hoc working group, and the consultation aims to gather feedback on its structure, core elements, and annexes. Responses are open until 30 April 2026.

The initiative follows the adoption of a regulation establishing the European Digital Identity Framework. The European Commission has mandated ENISA to support the certification of EUDI Wallets, including the development of a European cybersecurity certification scheme under the Cybersecurity Act.

The objective is to define cybersecurity requirements for digital identity solutions and support their consistent implementation across the EU.

In February 2026, ENISA signed a €1.6 million contribution agreement with the European Commission for two years to support the development and rollout of national certification schemes.

Funded under the Digital Europe Work Programme 2025–2027, the agreement supports capacity development, skills development, and alignment with a future European certification framework. Member states are expected to provide at least one certified EUDI Wallet by the end of 2026.

Digital identity wallets are intended to enable secure identification and the protection of personal data in both digital and physical environments.

The proposed certification scheme aims to verify compliance with cybersecurity requirements, addressing the limited use of formal certification in current wallet implementations.

The initiative carries significant regulatory weight as it translates the European Digital Identity Framework into enforceable cybersecurity standards. It ensures harmonised compliance across member states while strengthening trust, interoperability, and legal certainty within the EU’s digital identity ecosystem.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Commission invests in fact-checking to combat disinformation

The European Commission has awarded a €5 million grant to strengthen independent fact-checking capacity across the European Union and associated countries. The initiative will establish a comprehensive support network for fact-checkers working in all the EU languages.

The European Fact-Checking Standards Network will lead the project alongside seven partner organisations. The scheme will provide fact-checkers with protection covering legal support, cybersecurity assistance, psychological support and access to an independent European repository of fact-checks.

By expanding Europe’s independent fact-checking community, the initiative will improve the Union’s ability to detect and analyse disinformation threats. The announcement reflects the Commission’s commitment to safeguarding information integrity and democratic resilience across Brussels.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

UN commissioner calls for human rights-centred digital governance at GANHRI conference

United Nations High Commissioner for Human Rights Volker Türk told the annual conference of the Global Alliance of National Human Rights Institutions in Geneva that digital technologies are affecting human rights in areas including conflict, surveillance, online violence, and civic space, while protections have not kept pace.

Türk said ‘while our rights fully apply online, the systems to protect them have yet to keep pace.’ He referred to social media hate speech, surveillance, online violence against women in public life, and the use of digital technologies in conflict.

The speech set out two priorities for national human rights institutions: using digital tools in their own work, and strengthening protection of human rights in digital spaces. Türk said this includes documenting the human rights impact of digital technologies, using existing laws for accountability, and helping shape new legal frameworks.

On AI, Türk said: ‘This evidence should be used to push for accountability under existing laws. It should also inform the development of new legal frameworks, in line with the Global Digital Compact’s vision of inclusive and accountable digital governance, based on human rights.’ He added: ‘This also means advocating for mandatory human rights due diligence in the design, development, and deployment of AI systems.’

Türk also said the Office of the United Nations High Commissioner for Human Rights is launching the Human Rights Data Exchange, which he described as a way to bring together fragmented data on human rights violations and support earlier and more coordinated action. He also referred to a new Global Alliance for Human Rights (GAHRI), which he said seeks to place human rights at the centre of global debate and decision-making.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Oracle expands AI options for US government agencies

The US government is set to gain expanded AI capabilities through new infrastructure and model deployment options in Oracle Cloud.

These developments aim to improve agencies’ ability to manage critical tasks, from situational awareness to cybersecurity, while maintaining strict security and compliance standards.

High-performance GPUs and AI models will support faster, more reliable inference and training, helping agencies respond more effectively to public needs.

The focus is on enabling secure deployment in environments with sensitive data and complex regulatory requirements, ensuring AI use aligns with public interest and safety.

Such an expansion builds on existing government AI frameworks, offering capabilities for retrieval-augmented generation, secure inference, and operational analytics.

By integrating AI in a controlled, compliant environment, US agencies can improve efficiency, decision-making, and public service delivery without compromising security.

Ultimately, these advancements by Oracle aim to ensure that government AI adoption benefits citizens directly, supporting transparency, accountability, and effective public administration in high-stakes contexts.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

ICT4Peace hosts workshop to support preparations for Geneva 2027 AI Summit

ICT4Peace hosted a launch event at the GenAI Zürich 2026 conference to support preparations for the Geneva 2027 AI Summit, which Switzerland is set to host.

The event was organised at the invitation of the Swiss government and brought together around 40 participants from government, business, academia, and civil society to discuss potential objectives and outcomes for the summit.

The workshop was moderated by Ambassador Thomas Schneider, Vice-Director of the Swiss Federal Office of Communications (BAKOM), and Ambassador Markus Reubi, Project Lead for the Geneva 2027 AI Summit at the Swiss Federal Department of Foreign Affairs (EDA). Breakout sessions were facilitated by Katharina “Nina” Frey (ICAIN, ETH Zurich) and Daniel Dobos (Swisscom).

Daniel Stauffacher, founder of ICT4Peace, organised and hosted the event, which took place on 1 April.

Participants discussed a set of guiding questions aimed at shaping the focus and outcomes of the 2027 summit. These included identifying areas where international dialogue and cooperation are needed, defining potential political and practical outcomes, and exploring Switzerland’s strengths in facilitating multistakeholder engagement.

The discussions also addressed identifying potential partners and addressing areas of disagreement around specific policy objectives, as well as developing concrete tools and solutions that could be presented as Swiss contributions at the summit.

Participants were invited to provide input on issues such as inclusivity, coordination across initiatives, and the role of diverse stakeholders in shaping the summit process.

According to the organisers, the outcomes of the workshop will be compiled and submitted to the Swiss government at a Platform Tripartite meeting scheduled for 13 April in Bern.

The Geneva 2027 AI Summit will follow previous global AI summits hosted by the United Kingdom, the Republic of Korea, France, and India.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Global cyber stability conference set for May 2026 in Geneva

The Cyber Stability Conference 2026 will take place on 4–5 May at the Centre International de Conférences Genève in Geneva, bringing together global stakeholders to discuss the future of ICT security and cyber governance.

Organised by the United Nations Institute for Disarmament Research, the event will run in a hybrid format during Geneva Cyber Week.

The conference comes amid growing international efforts to strengthen frameworks for responsible state behaviour in cyberspace and improve coordination on digital security challenges. It is positioned within a broader push to adapt governance systems to rapid technological change.

Discussions will focus on how cyber governance can respond to emerging technologies such as AI and quantum computing. Emphasis will be placed on aligning regulatory and security approaches with technological development to reinforce international stability.

Participants from government, academia, industry, and civil society will review past lessons, assess current risks, and explore future pathways for global ICT security governance.

Cyber stability is becoming a core pillar of global security as digital infrastructure underpins economies, governance systems, and critical services. Stronger coordination on cyber governance is essential to reducing systemic risks and ensuring technological progress does not outpace security frameworks.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Malwarebytes highlights Microsoft findings on WhatsApp attachments used in Windows attacks

Malwarebytes has reported on findings from Microsoft researchers about a campaign that uses WhatsApp attachments to trick Windows users into launching a malicious script that grants attackers remote access to the machine.

According to the Malwarebytes report, Microsoft researchers said the attack does not rely on a software flaw in WhatsApp itself. Instead, it depends on social engineering. Victims receive what appears to be a harmless attachment through WhatsApp, but the file is actually a .vbs script that Windows can execute.

Once opened, the script copies built-in Windows tools into a hidden folder and renames them to appear less suspicious. Microsoft’s analysis, as cited by Malwarebytes, says legitimate system tools are then abused to download additional malware, using a living-off-the-land approach that avoids introducing obvious malicious binaries.

The infection chain is also designed to blend in with normal activity. Further scripts are fetched from mainstream cloud providers, making network traffic appear to be accessing services such as AWS, Tencent Cloud, or Backblaze rather than a clearly suspicious server.

Attempts to gain administrator privileges are part of the process as well. The malware reportedly attempts to alter User Account Control behaviour and registry settings to make system-level changes more quietly and remain active after a reboot.

At the final stage, an unsigned MSI installer deploys remote-access software and other payloads, allowing the attacker to maintain access to the compromised device and its data.

Malwarebytes also highlighted practical safety steps for home users and small businesses, including avoiding unsolicited attachments, enabling file extensions in Windows Explorer so misleading filenames are easier to spot, using up-to-date anti-malware tools, downloading software only from official vendor sites, and treating unexpected UAC prompts or sudden system changes as warning signs. Keeping Windows and other applications updated also remains important.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Cyberattack on Hasbro exposes vulnerabilities in large enterprise systems

Hasbro has confirmed a cyberattack that disrupted internal systems and may take several weeks to resolve. The company detected unauthorised access on 28 March and responded by shutting down parts of its infrastructure to contain the incident.

Operations continue under contingency measures, allowing order processing and product distribution despite system disruptions.

However, ongoing security efforts suggest the threat may not yet be fully contained, while external cybersecurity specialists have been engaged to support the investigation.

The company has not disclosed the nature of the attack, and it remains unclear whether data has been exfiltrated. Public statements indicate that the full scope and impact of the breach are still under assessment, with uncertainty over potential financial or operational consequences.

The incident reflects a broader trend of cyberattacks targeting large corporations to disrupt operations and extract value.

Previous cases, including disruptions at Jaguar Land Rover, highlight the potential for prolonged economic impact and the increasing importance of resilience in corporate cybersecurity strategies.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

EIB highlights AI as key driver of Croatia’s economic growth

The European Investment Bank and the Croatian National Bank have emphasised the strategic importance of AI in strengthening Croatia’s economic competitiveness. Discussions at a joint conference focused on accelerating AI adoption through coordinated investment, policy development and skills enhancement.

Despite strong investment activity among firms in Croatia, the uptake of advanced technologies remains limited. Only a small share of companies systematically use generative AI, with applications largely confined to internal processes, highlighting significant untapped potential for productivity gains.

Participants identified key structural barriers, including limited access to finance, shortages of skilled workers and regulatory uncertainty.

Addressing these challenges requires a combined approach that mobilises private capital, improves access to funding for smaller firms and supports the development of a more robust innovation ecosystem.

The EIB continues to play a central role in Europe’s digital transformation, with major funding initiatives aimed at scaling AI technologies and strengthening strategic infrastructure.

By aligning financial instruments with policy priorities, the initiative seeks to enhance long-term growth, resilience and integration into global value chains.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

EPO accelerates digital patent shift with paperless system by 2027

The European Patent Office (EPO) is accelerating its transition towards a fully digital patent system, with plans to implement a paperless patent-granting process by 2027.

Discussions at the latest eSACEPO meeting highlighted steady progress and broad stakeholder support for modernising patent workflows.

Electronic filing and communication are set to become the default, with paper-based processes limited to exceptional cases. The shift aims to improve efficiency and accessibility, supported by legal adjustments and the gradual introduction of structured data formats to enhance processing accuracy.

Digital tools continue to evolve, with the MyEPO platform expanding its functionality through interface upgrades, self-service features and new capabilities such as colour drawing submissions.

The rollout of DOCX filing, alongside optional PDF backups, reflects a cautious approach designed to balance innovation with reliability.

AI is increasingly integrated into patent examination processes, supporting tasks such as search and documentation.

However, the EPO maintains a human-centric model, ensuring that decision-making authority remains with patent examiners while AI enhances productivity and consistency.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Diplo chatbot can make mistakes. Consider checking important information.