Cybersecurity

Nvidia expands AI chip production in the US amid political pressure and global shifts

Nvidia is significantly ramping up its presence in the United States by commissioning over a million square feet of manufacturing space in Arizona and Texas to build and test its powerful AI chips. The tech giant has begun producing its Blackwell chips at TSMC facilities in Phoenix and is developing large-scale ‘supercomputer’ manufacturing plants in partnership with Foxconn in Houston and Wistron in Dallas.

The company projects mass production to begin within the next 12 to 15 months, with ambitions to manufacture up to half a trillion dollars’ worth of AI infrastructure in the US over the next four years. CEO Jensen Huang emphasised that this move marks the first time the core components of global AI infrastructure are being built domestically.

He cited growing global demand, supply chain resilience, and national security as key reasons for the shift. Nvidia’s decision follows an agreement with the Trump administration that helped the company avoid export restrictions on its H20 chip, a top-tier processor still eligible for export to China.

Nvidia joins a broader wave of AI industry leaders aligning with the Trump administration’s ‘America-first’ strategy. Companies like OpenAI and Microsoft have pledged massive investments in US-based AI infrastructure, hoping to secure political goodwill and avoid regulatory hurdles.

Trump has also reportedly pressured key suppliers like TSMC to expand American operations, threatening tariffs as high as 100% if they fail to comply. Despite the enthusiasm, Nvidia’s expansion faces headwinds.

A shortage of skilled workers and potential retaliation from China—particularly over raw material access—pose serious risks. Meanwhile, Trump’s recent moves to undermine the Chips Act, which provides critical funding for domestic chipmaking, have raised concerns about the long-term viability of US semiconductor investment.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

US exempts key electronics from China import taxes

Smartphones, computers, and key tech components have been granted exemption from the latest round of US tariffs, providing relief to American technology firms heavily reliant on Chinese manufacturing.

The decision, which includes products such as semiconductors, solar cells, and memory cards, marks the first major rollback in President Donald Trump’s trade war with China.

The exemptions, retroactively effective from 5 April, come amid concerns from US tech giants that consumer prices would soar.

Analysts say this move could be a turning point, especially for companies like Apple and Nvidia, which source most of their hardware from China. Industry reaction has been overwhelmingly positive, with suggestions that the policy shift could reshape global tech supply chains.

Despite easing tariffs on electronics, Trump has maintained a strict stance on Chinese trade, citing national security and economic independence.

The White House claims the reprieve gives firms time to shift manufacturing to the US. However, electronic goods will still face a separate 20% tariff due to China’s ties to fentanyl-related trade. Meanwhile, Trump insists high tariffs are essential leverage to renegotiate fairer global trade terms.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI voice hacks put fake Musk and Zuckerberg at crosswalks

Crosswalk buttons in several Californian cities have been hacked to play AI-generated voices impersonating tech moguls Elon Musk and Mark Zuckerberg, delivering bizarre and satirical messages to pedestrians.

The spoof messages, which mock the CEOs with lines like ‘Can we be friends?’ and ‘Cooking our grandparents’ brains with AI slop,’ have been heard in Palo Alto, Redwood City, and Menlo Park.

US Palo Alto officials confirmed that 12 intersections were affected and the audio systems have since been disabled.

While the crosswalk signals themselves remain operational, authorities are investigating how the hack was carried out. Similar issues are being addressed in nearby cities, with local governments moving quickly to secure the compromised systems.

The prank, which uses AI voice cloning, appears to layer these spoofed messages on top of the usual accessibility features rather than replacing them entirely.

Though clearly comedic in intent, the incident has raised concerns about the growing ease with which public systems can be manipulated using generative technologies.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Microsoft users at risk from tax-themed cyberattack

As the US tax filing deadline of April 15 approaches, cybercriminals are ramping up phishing attacks designed to exploit the urgency many feel during this stressful period.

Windows users are particularly at risk, as attackers are targeting Microsoft account credentials by distributing emails disguised as tax-related reminders.

These emails include a PDF attachment titled ‘urgent reminder,’ which contains a malicious QR code. Once scanned, it leads users through fake bot protection and CAPTCHA checks before prompting them to enter their Microsoft login details, details that are then sent to a server controlled by criminals.

Security researchers, including Peter Arntz from Malwarebytes, warn that the email addresses in these fake login pages are already pre-filled, making it easier for unsuspecting victims to fall into the trap.

Entering your password at this stage could hand your credentials to malicious actors, possibly operating from Russia, who may exploit your account for maximum profit.

The form of attack takes advantage of both the ticking tax clock and the stress many feel trying to meet the deadline, encouraging impulsive and risky clicks.

Importantly, this threat is not limited to Windows users or those filing taxes by the April 15 deadline. As phishing techniques become more advanced through the use of AI and automated smartphone farms, similar scams are expected to persist well beyond tax season.

The IRS rarely contacts individuals via email and never to request sensitive information through links or attachments, so any such message should be treated with suspicion instead of trust.

To stay safe, users are urged to remain vigilant and avoid clicking on links or scanning codes from unsolicited emails. Instead of relying on emails for tax updates or returns, go directly to official websites.

The IRS offers resources to help recognise and report scams, and reviewing this guidance could be an essential step in protecting your personal information, not just today, but in the months ahead.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

UAE experts warn on AI privacy risks in art apps

A surge in AI applications transforming selfies into Studio Ghibli-style artwork has captivated social media, but UAE cybersecurity experts are raising concerns over privacy and data misuse.

Dr Mohamed Al Kuwaiti, Head of Cybersecurity for the UAE Government, warned that engaging with unofficial apps could lead to breaches or leaks of personal data. He emphasised that while AI’s benefits are clear, users must understand how their personal data is handled by these platforms.

He called for strong cybersecurity standards across all digital platforms, urging individuals to be more cautious with their data.

Media professionals are also sounding alarms. Adel Al-Rashed, an Emirati journalist, cautioned that free apps often mimic trusted platforms but could exploit user data. He advised users to stick to verified applications, noting that paid services, like ChatGPT’s Pro edition, offer stronger privacy protections.

While acknowledging the risks, social media influencer Ibrahim Al-Thahli highlighted the excitement AI brings to creative expression. He urged users to focus on education and safe engagement with the technology, underscoring the UAE’s goal to build a resilient digital economy.

For more information on these topics, visit diplomacy.edu.

Hackers leak data from Indian software firm in major breach

A major cybersecurity breach has reportedly compromised a software company based in India, with hackers claiming responsibility for stealing nearly 1.6 million rows of sensitive data on 19 December 2024.

A hacker identified as @303 is said to have accessed and exposed customer information and internal credentials, with the dataset later appearing on a dark web forum via a user known as ‘frog’.

The leaked data includes email addresses linked to major Indian insurance providers, contact numbers, and possible administrative access credentials.

Analysts found that the sample files feature information tied to employees of companies such as HDFC Ergo, Bajaj Allianz, and ICICI Lombard, suggesting widespread exposure across the sector.

Despite the firm’s stated dedication to safeguarding data, the incident raises doubts about its cybersecurity protocols.

The breach also comes as India’s insurance regulator, IRDAI, has begun enforcing stricter cyber measures. In March 2025, it instructed insurers to appoint forensic auditors in advance and perform full IT audits instead of waiting for threats to surface.

A breach like this follows a string of high-profile incidents, including the Star Health Insurance leak affecting 31 million customers.

With cyberattacks in India up by 261% in early 2024 and the average cost of a breach now ₹19.5 crore, experts warn that insurance firms must adopt stronger protections instead of relying on outdated defences.

For more information on these topics, visit diplomacy.edu.

ICT policy reform planned to boost digital economy in Bangladesh

Bangladesh is set to overhaul key ICT and telecom policies by June to eliminate major barriers to digital growth, according to Faiz Ahmad Taiyeb, Special Assistant to the Chief Adviser for Posts, Telecommunications and ICT.

He shared the plan at the Bangladesh Investment Summit 2025, highlighting that modern laws and a supportive business environment will pave the way for stronger digital investments.

Taiyeb noted that for over 15 years, fragmented digital initiatives have led to isolated systems with little integration or interoperability.

However, this lack of coordination has weakened citizen services and digital payments, and the government now aims to fix these issues as a top priority. The goal is to empower the country’s vast youth population through technology.

Several major reforms are currently in progress. The Cyber Security Ordinance, set to be finalised by the end of April, will introduce new transparency measures by requiring the government to disclose information about online content restrictions, giving citizens the right to legally challenge them.

Changes to the telecom licensing framework and network infrastructure are also moving forward.

At the summit’s digital growth panel, international experts called for easier cross-border e-commerce and fewer restrictions on digital transactions.

Bangladesh Bank plans to introduce full interoperability in digital payments by next year, and Grameenphone’s CEO highlighted how mobile connectivity continues to drive economic transformation.

For more information on these topics, visit diplomacy.edu.

WooCommerce responds to alleged data breach claim

A hacker going by the alias ‘Satanic’ recently claimed responsibility for a significant data breach affecting websites that use WooCommerce, a leading eCommerce platform. The attacker alleged that over 4.4 million customer records were compromised, including personal and corporate data such as email addresses, phone numbers, physical addresses, and social media profiles, as well as company revenues, staff sizes, and tech stacks.

The original announcement was made on Breach Forums, a known cybercrime forum, where the hacker stated that the data was available for sale via private messages or Telegram. While initial reports—including one by HackRead—linked the breach to WooCommerce-based stores, WooCommerce has since issued an official statement denying that its systems were involved in the incident.

‘We can confirm that no WooCommerce data has been involved in the breach described in these articles. Our team quickly investigated the data samples and compared them against our own records. We determined that the data was not obtained through a breach of WooCommerce.com or any other Automattic services.’ — Jay Walsh, Director of Communications, WooCommerce.

The company believes that the leaked data originated from a third-party service that aggregates publicly available information about e-commerce sites. It is unclear whether the data was accessed legally or obtained through other means.

The attacker claimed the breach was achieved by exploiting vulnerabilities in third-party systems integrated with WooCommerce-powered websites—such as CRMs or marketing platforms—rather than through WooCommerce itself. However, no technical evidence has been shared to substantiate this claim.

The incident follows previous breach claims by the same hacker involving platforms like Magento and Twilio’s SendGrid, the latter of which was also denied by the company.

WooCommerce, owned by Automattic, powers a large share of global online shops. While the platform remains secure according to its developers, the case highlights ongoing concerns about the security of third-party tools and integrations.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Rapid AI growth raises global energy demands

The global demand for AI technology is set to consume nearly as much energy by 2030 as Japan does today, with much of that coming from data centres. According to the International Energy Agency (IEA), electricity demand from data centres will more than double by 2030, driven largely by AI.

Some AI data centres will require up to 20 times more energy than the average one, raising concerns about the environmental impact.

While AI’s rapid adoption could increase energy consumption, the IEA believes it also holds the potential for reducing overall greenhouse gas emissions. AI could improve energy efficiency, assist in designing grids for renewable energy, and optimise industrial processes.

However, the report warns that without careful regulation, AI’s growth could strain energy systems and harm the environment, particularly if fossil fuel-powered plants are used to meet energy demand.

Efforts to mitigate the impact of AI include harnessing its capabilities to design energy-efficient systems, optimise transport, and assist in critical infrastructure management. Yet, some experts argue that AI’s energy demands might outpace these benefits unless governments take proactive steps.

Claude Turmes, former Luxembourg energy minister, warned that the IEA’s optimistic outlook overlooks the severe risks to energy systems, urging stronger regulatory measures.

For more information on these topics, visit diplomacy.edu.

New rules in Thailand aim to tackle foreign P2P crypto services

Thailand has introduced a new legal framework targeting foreign, unregulated peer-to-peer (P2P) crypto platforms to combat online financial crime. The Thai SEC announced cabinet approval of updated emergency decrees, imposing strict measures on digital asset businesses in the country.

The amendments impose severe penalties on foreign crypto platforms, including up to three years in prison, fines of 300,000 baht (around $8,700), or both, for violations.

The SEC’s updated rules also empower authorities to block suspicious transactions and demand that crypto service providers report any scam-related activity. Other sectors, such as commercial banks, telecom companies, and social media platforms, now have joint responsibilities for preventing cybercrime.

SEC Secretary-General Pornanong Budsaratragoon stated that the aim is to reduce money laundering risks and minimise damage from online crimes. It will be achieved through stronger enforcement in collaboration with digital agencies.

Despite these stringent measures, Thailand remains open to innovation in the crypto sector. The country has made strides toward adopting blockchain technology, such as planning a blockchain-based trading platform for securities firms. It is also considering a stablecoin backed by government bonds.

For more information on these topics, visit diplomacy.edu