Digital cooperation

Shadow AI becomes a new governance challenge for European organisations

Employees are adopting generative tools at work faster than organisations can approve or secure them, giving rise to what is increasingly described as ‘shadow AI‘. Unlike earlier forms of shadow IT, these tools can transform data, infer sensitive insights, and trigger automated actions beyond established controls.

For European organisations, the issue is no longer whether AI should be used, but how to regain visibility and control without undermining productivity, as shadow AI increasingly appears inside approved platforms, browser extensions, and developer tools, expanding risks beyond data leakage.

Security experts warn that blanket bans often push AI use further underground, reducing transparency and trust. Instead, guidance from EU cybersecurity bodies increasingly promotes responsible enablement through clear policies, staff awareness, and targeted technical controls.

Key mitigation measures include mapping AI use across approved and informal tools, defining safe prompt data, and offering sanctioned alternatives, with logging, least-privilege access, and approval steps becoming essential as AI acts across workflows.

With the EU AI Act introducing clearer accountability across the AI value chain, unmanaged shadow AI is also emerging as a compliance risk. As AI becomes embedded across enterprise software, organisations face growing pressure to make safe use the default rather than the exception.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Study shows AI-enabled digital stethoscope boosts cardiac screening accuracy

Researchers have found that an AI-enabled digital stethoscope significantly improves the detection of moderate-to-severe valvular heart disease in primary care compared with traditional auscultation. The prospective study was published in the European Heart Journal Digital Health.

In the trial, the AI-assisted device achieved a sensitivity of 92.3 percent for audible valvular disease, more than double the 46.2 percent recorded using standard stethoscopes. The system identified twice as many previously undiagnosed moderate-to-severe cases.

The study involved 357 patients aged 50 and over with cardiovascular risk factors and no known valvular disease. Participants underwent routine clinician examination, along with AI-supported phonocardiogram analysis, with echocardiography used for confirmation.

While specificity was lower for the AI tool, researchers said the technology is intended to support screening rather than replace clinical judgement. Earlier identification could enable faster referral for echocardiography and treatment.

Authors cautioned that increased false positives may raise referral volumes and healthcare costs, highlighting the need for further evaluation. Despite limitations, the findings suggest AI augmentation could strengthen early cardiac screening in primary care settings.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

EU strengthens cyber defence after attack on Commission mobile systems

A cyber-attack targeting the European Commission’s central mobile infrastructure was identified on 30 January, raising concerns that staff names and mobile numbers may have been accessed.

The Commission isolated the affected system within nine hours instead of allowing the breach to escalate, and no mobile device compromise was detected.

Also, the Commission plans a full review of the incident to reinforce the resilience of internal systems.

Officials argue that Europe faces daily cyber and hybrid threats targeting essential services and democratic institutions, underscoring the need for stronger defensive capabilities across all levels of the EU administration.

CERT-EU continues to provide constant threat monitoring, automated alerts and rapid responses to vulnerabilities, guided by the Interinstitutional Cybersecurity Board.

These efforts support the broader legislative push to strengthen cybersecurity, including the Cybersecurity Act 2.0, which introduces a Trusted ICT Supply Chain to reduce reliance on high-risk providers.

Recent measures are complemented by the NIS2 Directive, which sets a unified legal framework for cybersecurity across 18 critical sectors, and the Cyber Solidarity Act, which enhances operational cooperation through the European Cyber Shield and the Cyber Emergency Mechanism.

Together, they aim to ensure collective readiness against large-scale cyber threats.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Lithuania selects Procivis for EU digital ID wallet sandbox

Procivis has been selected to build Lithuania’s European Digital Identity Wallet sandbox, advancing preparations for the EU digital identity rollout. The 12-month initiative will be delivered in partnership with the state Agency for Digital Solutions.

The project will establish a national test environment designed to simulate real-world digital identity scenarios. Built on Procivis One, the platform meets eIDAS 2.0 requirements and will validate the wallet infrastructure before EU deployment.

Testing will cover use cases for citizens, public institutions, and private-sector relying parties. Cross-border scenarios, including access to public and travel-related services, will also be explored to ensure interoperability across EU member states.

The sandbox will contribute to Lithuania’s readiness for the 2026 eIDAS 2.0 deadline while supporting broader participation in the EU Large Scale Pilot programmes focused on digital identity innovation.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Smart policing project halted by Greek data protection authority

Greece’s data protection authority has warned against activating an innovative policing system planned by the Hellenic Police. The ruling said biometric identity checks carried out on the street would breach data protection law in Greece.

The system would allow police patrols in Greece to use portable devices to scan fingerprints and facial images during spot checks. Regulators said Greek law lacks a clear legal basis for such biometric processing.

The authority said existing rules cited by the Hellenic Police only apply to suspects or detainees and do not cover modern biometric technologies. Greece, therefore, faces unlawful processing risks if the system enters full operation.

The innovative policing project in Greece received the EU funding of around four million euros and received backlash in the past. Regulators said deployment must wait until new legislation explicitly authorises police to use biometrics.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

European tech strategy advances with Germany’s new AI factory

Germany has launched one of Europe’s largest AI factories to boost EU-wide sovereign AI capacity. Deutsche Telekom unveiled the new ‘Industrial AI Cloud’ in Munich, in partnership with NVIDIA and Polarise.

Designed to deliver high-performance AI computing for industry, research, and public institutions, the platform keeps data operations under European jurisdiction. Company executives described the project as proof that Europe can build large-scale AI infrastructure aligned with its regulatory and sovereignty goals.

The AI factory runs on nearly 10,000 NVIDIA Blackwell GPUs, providing up to 0.5 exaFLOPS of computing power. Telekom said the capacity would be sufficient to support hundreds of millions of users accessing AI services simultaneously across the EU.

Officials in Germany framed the AI factory initiative as a strategic investment in technological leadership and digital independence. The infrastructure operates under German and EU data protection rules, positioning compliance and security as core competitive advantages.

Industrial applications are central to the project, with companies such as Siemens integrating simulation tools into the platform. The AI factory also runs on renewable energy, uses river water cooling, and plans to reuse waste heat within Munich’s urban network.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

New AI training platform for Olympians unveiled by Google Cloud

Google Cloud has launched an AI-powered video analysis platform designed to help US Ski & Snowboard athletes refine performance ahead of major international competitions.

Built using Gemini and advanced Google DeepMind models, the system analyses the biomechanics behind high-speed freestyle skiing and snowboarding manoeuvres.

Traditional motion capture required specialised suits and controlled lab environments. Google’s platform converts smartphone footage into biomechanical analysis, mapping body positioning, trick amplitude, and edge control within minutes.

Coaches and athletes can query performance data conversationally for immediate insight.

Near real-time delivery marks a significant shift in training methodology. Analysis can be reviewed on the slopes shortly after a run, enabling faster technical adjustments.

The technology is also supporting athlete preparation for the Milano-Cortina 2026 Winter Olympics, where marginal gains can determine podium outcomes.

Applications extend beyond winter sports. Similar AI biomechanics systems could support physical rehabilitation, robotics engineering, and industrial safety environments where precision movement analysis is essential.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Dubai hosts launch of AI tools for university students

The UAE Ministry of Higher Education and Scientific Research has partnered with Microsoft to develop AI agents to help university students find jobs. The initiative was announced in Dubai during a major policy gathering in the UAE.

The collaboration in the UAE will use Microsoft Azure to build prototype AI agents supporting personalised learning and career navigation. Dubai-based officials said the tools are designed to align higher education with labour market needs in the UAE.

Four AI agents are being developed in the UAE, covering lifelong skills planning, personalised learning, course co creation and research alignment. Dubai remains central to the project as a hub for higher education innovation in the UAE.

Officials in the UAE said the partnership reflects national priorities around innovation and a knowledge based economy. Microsoft said Dubai offers an ideal environment to scale AI driven education tools across the UAE.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

AI stethoscope doubles detection of serious heart valve disease

Researchers in the United States have shown that an AI-enabled digital stethoscope detected moderate to severe valvular heart disease more than twice as often as traditional tools during routine clinical exams.

The study assessed 357 patients aged 50 and above in primary care settings, using both conventional and AI-assisted stethoscopes. Sensitivity rose from 46.2 percent with traditional listening to 92.3 percent with the AI-enabled device.

Valvular heart disease affects a large proportion of older adults but frequently remains undiagnosed due to subtle or absent symptoms and limitations of conventional auscultation during busy clinical practice.

The digital stethoscope records high-fidelity heart sounds and applies machine-learning models to identify acoustic patterns associated with valve abnormalities, helping clinicians make early screening decisions.

US researchers noted a small drop in specificity that could increase false positives, but argued that earlier detection could reduce complications, hospital admissions, and long-term healthcare costs.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Info stealing malware spreads from Windows to macOS

Microsoft has warned that info stealing malware is increasingly targeting macOS alongside Windows, using cross platform tools and social engineering. The company said the trend accelerated from late 2025.

Attackers are luring macOS users to fake websites and malicious installers, often promoted through online ads. Microsoft said these campaigns steal credentials, crypto wallets and browser sessions on macOS and Windows.

Python based malware is also playing a larger role, enabling attackers to target macOS and Windows with the same code. Microsoft reported growing abuse of trusted platforms such as WhatsApp to spread infostealers.

Microsoft urged organisations and individuals to strengthen layered cybersecurity on macOS and Windows. The company said better user awareness and monitoring could reduce the risk of data theft and account compromise.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot