Economic

AWS warns of AI powered cybercrime

Amazon Web Services has revealed that a Russian-speaking threat actor used commercial AI tools to compromise more than 600 FortiGate firewalls across 55 countries. AWS described the campaign as an AI-powered assembly line for cybercrime.

According to AWS, the attacker relied on exposed management ports and weak single-factor credentials rather than exploiting software vulnerabilities. The campaign targeted FortiGate devices globally and focused on harvesting credentials and configuration data.

AWS said the potentially Russian group appeared unsophisticated but achieved scale through AI-assisted mass scanning and automation. When encountering stronger defences, the attackers reportedly shifted to easier targets rather than persist.

The company advised organisations using FortiGate appliances to secure management interfaces, change default credentials and enforce complex passwords. Amazon said it was not compromised during the campaign.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Stanford speech warns of AI tsunami

Senator Bernie Sanders has warned at Stanford University in California that the US is unprepared for the speed and scale of the AI revolution. Speaking in California alongside Congressman Ro Khanna, he called the moment one of the most dangerous in modern US history.

At Stanford University, Sanders urged a moratorium on the expansion of AI data centres to slow development while lawmakers catch up. He argued that the American public lacks a clear understanding of the economic and social impact ahead and that New York is already considering a pause.

Khanna, who represents Silicon Valley in California, rejected a complete moratorium but called for steering AI growth through renewable energy and water efficiency standards. He outlined principles to prevent wealth from being concentrated among a small group of tech billionaires.

Sanders also raised concerns in California about job losses and emotional reliance on AI, citing projections of widespread automation. He called for a national debate in the US over whether AI will benefit the public or deepen inequality.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Global microchip shortage pushes electronics prices higher

South African consumers may soon pay more for smartphones and laptops due to a global shortage of memory chips. The high demand is largely driven by AI data centres, which require powerful microchips to operate.

Tech experts report that major AI companies are acquiring large quantities of these chips for their own data centres, limiting supply for other industries. At the same time, importing chips from regions such as China has become more difficult because of trade tensions and tariffs.

Industry leaders, including Apple’s Tim Cook and Tesla’s Elon Musk, have expressed concern over the impact on production and business operations. The strain is being felt across the tech sector as companies compete for the limited supply of components.

With no immediate solution, the increased costs are expected to be passed down to consumers. Analysts warn that the combination of high demand, supply constraints, and global trade issues will make technology and appliances more expensive for consumers.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Pension savers increasingly rely on AI for retirement planning

AI is becoming a preferred tool for those beginning their retirement planning. Data on searches and website traffic suggests AI is meeting early-stage needs for pension guidance.

Platforms offering general financial information, such as MoneyHelper, have seen traffic fall by 10% over the past six months. At the same time, AI-generated overviews of pension content are on the rise.

AI tools are mainly used to sense-check retirement decisions, model ‘what-if’ scenarios, simplify pension jargon, and assist with tax planning. Users view AI as a thinking partner rather than a replacement for regulated advice.

Despite the rise of AI, bespoke advisory services, such as Pension Wise, have remained relevant, providing personalised guidance that AI cannot fully replace. PensionBee highlights that AI is helpful for basic guidance, but services remain essential for more complex planning.

Experts warn that the retirement sector faces a challenge in maintaining trust and relevance as AI continues to improve. Savers increasingly rely on technology for guidance, signalling a shift in how pensions are researched and managed.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Carrefour accelerates AI-enabled transformation to 2030, following Walmart’s strategic playbook

According to reporting by Diginomica, Carrefour, one of Europe’s largest retail groups, is accelerating the adoption of AI across its business as part of a strategic transformation aimed at 2030.

Inspired in part by the AI-driven overhaul undertaken by Walmart in the US, Carrefour’s initiative is intended to reshape its logistics, pricing, forecasting and store operations to become more data-driven, efficient and responsive to consumer trends.

Key elements of Carrefour’s AI focus include supply chain optimisation, dynamic pricing and promotions, customer engagement, and store and back-office automation.

First, using AI to predict demand, manage inventories and reduce waste across national and regional networks. Then, algorithms adjust pricing based on real-time data to improve competitiveness and margin performance.

Personalised offers and recommendations powered by machine learning work to enhance loyalty and user experience. Finally, AI tools streamline staffing, task allocation, and routine merchandising processes.

The transformation plan emphasises enterprise data strategy as a foundation, from consolidating disparate data sources to deploying machine learning models that inform business decisions in near-real time.

Carrefour executives view AI not just as a set of point solutions, but as core to future competitiveness, citing early gains in forecasting accuracy and reduced waste.

Carrefour’s approach is part of a broader retail AI arms race in which large grocers leverage scale and data to drive efficiency and customer centricity, with Walmart often cited as a pioneer whose playbook demonstrates the strategic value of enterprise-wide AI.

The report also notes challenges ahead, such as aligning organisational culture, ensuring data quality and addressing privacy concerns around personalised offers.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Ashford Port Health Authority rolls out AI-powered compliance checks at UK border control

The Ashford Port Health Authority, operated by Ashford Borough Council at the Sevington Border Control Post in Kent, has deployed an AI-enabled system to support import compliance checks.

This technology uses Intelligent Document Processing to automatically extract, structure and evaluate import documentation for agricultural products and other regulated goods, reducing the need for manual review in early screening stages.

Officials describe the system as the first of its kind in the UK to fully automate initial documentary compliance checks for imported goods, including products of animal origin (POAO), high-risk food not of animal origin (HRFNAO) and other regulated consignments.

By mimicking the workflows of human officers, it helps improve productivity, consistency and speed of border controls while allowing staff to focus on frontline services.

The rollout also allows Ashford Borough Council to freeze official control charges for the 2026/27 financial year, as automation gains offset cost pressures. The council emphasises that the AI system augments rather than replaces expert oversight, strengthening compliance without sacrificing professional judgement.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Kentucky AI therapy ban passes with strong support in decisive 88–7 vote

Lawmakers in the Kentucky House of Representatives have approved House Bill 455, a measure aimed at limiting the role of AI in mental health services. The proposal introduces safeguards to regulate the use of AI tools in therapy settings and to strengthen patient protections.

Under the bill, AI systems are prohibited from making independent therapeutic decisions or generating treatment plans without review from a licensed therapist. In particular, tools such as ChatGPT, Gemini, and Claude would be barred from performing direct therapy or replacing human interaction.

However, self-help materials and educational resources are explicitly exempt from the restrictions. Therapists may still use AI as a supportive tool, provided they do not delegate substantive clinical responsibilities or direct client engagement.

In addition, practitioners must inform patients if AI is being used and obtain their consent. Supporters argue that preserving the human-to-human relationship in therapy is essential, especially amid concerns that some chatbot systems have encouraged harmful behaviour or worsened mental health outcomes.

Although the bill passed the House 88-7, opposition came mainly from libertarian-leaning Republican members who contended that the measure introduces unnecessary regulation and could hinder innovation. Nevertheless, backers maintain that clearer guardrails are necessary to address risks linked to automated mental health advice.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI music discovery unlocks powerful and highly effective ways to find new songs

AI tools developed by companies such as OpenAI, Anthropic, and Google are increasingly shaping everyday digital practices. While these systems are not fully reliable for complex research, they offer practical support for routine tasks. One emerging use case is personalised music discovery.

Music platforms, such as Spotify and Apple, allow users to export their listening history, creating opportunities for AI-driven analysis. By uploading a music library file, users enable AI systems to categorise genres, detect patterns, and identify gaps in their playlists. Broader preferences can then be refined through targeted prompts.

Greater specificity improves results. Users can exclude familiar artists, prioritise recent releases, or emphasise similarities with favourite bands. Signature tracks may be suggested for evaluation, allowing continuous feedback. Iterative interaction helps the system better understand musical preferences over time, leading to increasingly accurate recommendations.

Once curated, playlists can be exported and transferred back to streaming services using tools such as Exportify and TuneMyMusic. Although some may question the data implications of such personalisation, the process remains efficient, fast, and engaging. AI-driven music discovery ultimately demonstrates how general-purpose systems can deliver highly tailored cultural experiences.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

OpenClaw exploits spark a major security alert

A wave of coordinated attacks has targeted OpenClaw, the autonomous AI framework that gained rapid popularity after its release in January.

Multiple hacking groups have taken advantage of severe vulnerabilities to steal API keys, extract persistent memory data, and push information-stealing malware instead of leaving the platform’s expanding user base unharmed.

Security analysts have linked more than 30,000 compromised instances to campaigns that intercept messages and deploy malicious payloads through channels such as Telegram.

Much of the damage stems from flaws such as the Remote Code Execution vulnerability CVE-2026-25253, supply chain poisoning, and exposed administrative interfaces. Early attacks centred on the ‘ClawHavoc’ campaign, which disguised malware as legitimate installation tools.

Users who downloaded these scripts inadvertently installed stealers capable of full compromise, enabling attackers to move laterally across enterprise systems instead of being confined to a single device.

Further incidents emerged on the OpenClaw marketplace, where backdoored ‘skills’ were published from accounts that appeared reliable. These updates executed remote commands that allowed attackers to siphon OAuth tokens, passwords, and API keys in real time.

A Shodan scan later identified more than 312,000 OpenClaw instances running on a default port with little or no protection, while honeypots recorded hostile activity within minutes of appearing online.

Security researchers argue that the surge in attacks marks a decisive moment for autonomous AI frameworks. As organisations experiment with agents capable of independent decision-making, the absence of security-by-design safeguards is creating opportunities for organised threat groups.

Flare’s advisory urges companies to secure credentials and isolate AI workloads instead of relying on default configurations that expose high-privilege systems to the internet.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!  

EU DSA fine against X heads to court in key test case

X Corp., owned by Elon Musk, has filed an appeal with the General Court of the European Union against a €120 million fine imposed by the European Commission for breaching the Digital Services Act. The penalty, issued in December, marks the first enforcement action under the 2022 law.

The Commission concluded that X violated transparency obligations and misled users through its verification design, arguing that paid blue checkmarks made it harder to assess account authenticity. Officials also cited concerns about advertising transparency and researchers’ access to platform data.

Henna Virkkunen, the EU’s executive vice-president for tech sovereignty, security, and democracy, said deceptive verification and opaque advertising had no place online. The Commission opened its probe in December 2023, examining risk management, moderation practices, and alleged dark patterns.

X Corp. argued that the decision followed an incomplete investigation and a flawed reading of the DSA, citing procedural errors and due-process concerns. It said the appeal could shape future enforcement standards and penalty calculations under the regulation.

The EU is also assessing whether X mitigated systemic risks, including deepfaked content and child sexual abuse material linked to its Grok chatbot. US critics describe DSA enforcement as a threat to free speech, while EU officials say it strengthens accountability across the digital single market.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!