Encryption

Cyber scams use a three-letter trap

Staying safe from cybercriminals can be surprisingly simple. While AI-powered scams grow more realistic, some signs are still painfully obvious.

If you spot the letters ‘.TOP’ in any message link, it’s best to stop reading and hit delete. That single clue is often enough to expose a scam in progress.

Most malicious texts pose as alerts about road tolls, deliveries or account issues, using trusted brand names to lure victims into clicking fake links.

The worst of these is the ‘.TOP’ top-level domain (TLD), which has become infamous for its role in phishing and scam operations. Although launched in 2014 for premium business use, its low cost and lack of oversight quickly made it a favourite among cyber gangs, especially those based in China.

Today, nearly one-third of all .TOP domains are linked to cybercrime — far surpassing the criminal activity seen on mainstream domains like ‘.com’.

Despite repeated warnings and an unresolved compliance notice from internet regulator ICANN, abuse linked to .TOP has only worsened.

Experts warn that it is highly unlikely any legitimate Western organisation would ever use a .TOP domain. If one appears in your messages, the safest option is to delete it without clicking.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Pakistan plans major electricity use for crypto and AI development

Islamabad plans to dedicate 2,000 megawatts of surplus electricity to support Bitcoin mining and AI data centres. The initiative aims to turn excess power into a driver for technology growth, as part of Pakistan’s wider digital infrastructure strategy.

Officials see the move as a way to boost tech industries and attract foreign investment.

The Pakistan Crypto Council, established earlier this year, leads the project. The country’s energy sector faces challenges from high tariffs and surplus generation, partly due to rapid solar power expansion.

Using excess electricity for crypto mining and AI data centres offers a productive solution to these issues.

Finance Minister Muhammad Aurangzeb recently approved the Pakistan Digital Assets Authority to regulate the growing crypto industry. He emphasised that regulation should help Pakistan not only catch up but take a leading role in the sector.

The PCC’s CEO Bilal Bin Saqib has engaged with the Power Minister to attract global crypto miners, describing Pakistan as a low-cost, high-growth market ready to compete.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Secret passwords could fight deepfake scams

As AI-generated images grow increasingly lifelike, a cyber security expert has warned that families should create secret passwords to guard against deepfake scams.

Cody Barrow, chief executive of EclecticIQ and a former US government adviser, says AI is making it far easier for criminals to impersonate others using fabricated videos or images.

Mr Barrow and his wife now use a private code to confirm each other’s identity if either receives a suspicious message or video.

He believes this precaution, simple enough for anyone regardless of age or digital skills, could soon become essential. ‘It may sound dramatic here in May 2025,’ he said, ‘but I’m quite confident that in a few years, if not months, people will say: I should have done that.’

The warning comes the same week Google launched Veo 3, its AI video generator capable of producing hyper-realistic footage and lifelike dialogue. Its public release has raised concerns about how easily deepfakes could be misused for scams or manipulation.

Meanwhile, President Trump signed the ‘Take It Down Act’ into law, making the creation of deepfake pornography a criminal offence. The bipartisan measure will see prison terms for anyone producing or uploading such content, with First Lady Melania Trump stating it will ‘prioritise people over politics’

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

FIFA chooses Avalanche for next-gen blockchain shift

FIFA has picked Avalanche to power its own blockchain network, ending its partnership with Algorand. The move signals a major step in expanding FIFA’s Web3 ambitions and digital asset strategy.

The new platform, a custom Avalanche Layer-1 blockchain, offers faster transaction speeds, lower fees, and simple wallet access. FIFA Collect will migrate to the new network, with support for EVM wallets like MetaMask, starting after 20 May.

Ava Labs, which developed Avalanche, said the deal was secured thanks to the network’s 6,500+ transactions per second and enterprise-grade reliability. Modex CEO Francesco Abbate confirmed that FIFA chose Avalanche after a full review of scalability, costs, and performance.

FIFA’s NFT marketplace is not the only project in the works. The football body is exploring other digital products, including immersive fan experiences. Meanwhile, AVAX, Avalanche’s native token, saw a surge in trading volume following the announcement.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Tether plans US stablecoin to comply with local rules

Tether plans to launch a separate stablecoin for the US market while keeping USDT focused on unbanked users in emerging economies. CEO Paolo Ardoino said the new coin would be tailored to meet domestic needs, with features different from USDT.

He noted the company is becoming more comfortable with the proposed GENIUS Act and aims to comply. Ardoino also said the act is more practical than Europe’s MiCA rules, which Tether believes place unnecessary pressure on dollar-based reserves.

Tether’s main mission remains supporting the 1.4 billion unbanked adults worldwide, especially in regions like Sub-Saharan Africa and Asia. Ardoino said USDT is often used for remittances and savings, with many relying on its stability during economic crises.

The GENIUS Act, now advancing through the US Senate, distinguishes between domestic and foreign stablecoin issuers. Tether supports the act and wants clarity before launching a stablecoin tied to the US market.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Authorities strike down cybercriminal servers

Authorities across Europe, North America and the UK have dismantled a major global malware network by taking down over 300 servers and seizing millions in cryptocurrency. The operation, led by Eurojust, marks a significant phase of the ongoing Operation Endgame.

Law enforcement agencies from Germany, France, the Netherlands, Denmark, the UK, the US and Canada collaborated to target some of the world’s most dangerous malware variants and the cybercriminals responsible for them.

The takedown also resulted in international arrest warrants for 20 suspects and the identification of more than 36 individuals involved.

The latest move follows similar action in May 2024, which had been the largest coordinated effort against botnets. Since the start of the operation, over €21 million has been seized, including €3.5 million in cryptocurrency.

The malware disrupted in this crackdown, known as ‘initial access malware’, is used to gain a foothold in victims’ systems before further attacks like ransomware are launched.

Authorities have warned that Operation Endgame will continue, with further actions announced through the coalition’s website. Eighteen prime suspects will be added to the EU Most Wanted list.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Banks push to scrap SEC cyber reporting rule

Five major US banking groups have asked the Securities and Exchange Commission (SEC) to drop its cyber security disclosure rule. The rule requires public companies to report incidents, such as data breaches, within four days.

The American Bankers Association and others said in a letter that the rule conflicts with systems built to protect critical infrastructure. They warned it may hurt law enforcement and cause market confusion.

The rule, introduced in July 2023, also affects crypto firms like Coinbase. However, the exchange recently reported a breach where hackers bribed staff for user data. Coinbase rejected a $20 million ransom but now faces at least seven lawsuits.

Banking groups want the SEC to remove Item 1.05 from Form 8-K rules. They argue investors would still be protected under existing rules for material information, without the risks of rushed public reporting.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

BlackRock Bitcoin fund now second-largest holder

BlackRock’s iShares Bitcoin Trust (IBIT) has become the second-largest holder of Bitcoin, surpassing major industry players including Binance and Strategy. Only the wallet attributed to Bitcoin’s creator, Satoshi Nakamoto, holds more of the asset.

IBIT currently manages 636,108 BTC, which accounts for more than 3% of Bitcoin’s total supply and nearly 57% of Nakamoto’s estimated holdings.

The fund’s growth since its launch in January 2024 has been remarkable. With over $66.9 billion in net assets, IBIT now leads all Bitcoin ETFs by value.

Bloomberg analyst Eric Balchunas believes it could surpass Satoshi’s wallet by next summer—sooner if Bitcoin’s price reaches $150,000. Such a move would likely spark even stronger institutional interest.

Analysts say IBIT’s rise shows growing demand for regulated crypto access from advisers and retail investors. Bitcoin ETFs are outperforming gold funds, and BlackRock’s push highlights a major shift in global investment strategies.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Stablecoin bill could trigger huge demand for US bonds

The White House is backing a plan to regulate stablecoins. Trump adviser David Sacks says it could bring trillions into US government bonds almost overnight.

He believes the GENIUS Act will give clear rules for stablecoins, which are currently unregulated. There’s already more than $200 billion in circulation, and legal clarity could unlock massive demand.

The bill passed a key Senate vote this week, with 66 senators in support, including 15 Democrats. Sacks says the administration expects it to pass fully and sees it as a way to modernise payments in the US.

He called stablecoins a faster, cheaper way to move money and said the bill would bring dollar-backed tokens under proper oversight.

But there are concerns over Trump’s links to the crypto world. His family supports World Liberty Financial, which recently launched a stablecoin called USD1. It is backed by US government bonds and dollar deposits.

The bill may still face delays. Senator Josh Hawley added a last-minute change to cap late payment charges on credit cards, which banking groups strongly oppose.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Kazakhstan to license crypto-to-fiat exchanges

Kazakhstan is moving to formally regulate cryptocurrency exchange services that convert digital assets into fiat. The National Bank will oversee licensing under new national rules.

Yerlan Ashykbekov, head of the bank’s payment systems department, confirmed that a new category of licensed crypto exchange providers is being introduced. These platforms will be authorised to carry out crypto-to-fiat operations.

The central bank will also define which cryptocurrencies can be bought or sold under the new framework. Licensed operators will fall under direct supervision by the National Bank, including those issuing and circulating stablecoins and other digital assets.

Exchanges based in the Astana International Financial Centre will remain under a separate regime, though the government aims to link both systems. The move aligns with President Kassym-Jomart Tokayev’s push to legalise crypto use and shift users out of the unregulated ‘grey zone.’

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!