Human rights principles

Diplo explores AI and diplomacy in the Gulf

DiploFoundation has taken its work on AI and governance to the Gulf, with engagements in Oman and Qatar focused on how AI is reshaping diplomacy and policymaking. In Muscat, Jovan Kurbalija delivered a lecture on AI’s geopolitical implications, led a workshop on the future of digital diplomacy, and met with institutions advancing Oman’s National AI Strategy and innovation ecosystem.

In Doha, Diplo participated in the international conference AI Ethics: The Convergence of Technology and Diverse Moral Traditions. Dr Kurbalija joined a panel on transnational AI principles, discussing how diverse ethical and cultural frameworks can guide global standards for responsible AI.

Diplo in Gulf

The Gulf engagements highlighted the need to balance innovation with responsibility. Discussions focused on equipping government staff with AI expertise, ensuring technology is integrated into governance that reflects cultural values, and shaping diplomatic practice around collaboration with tech companies.

Diplo’s programme builds on its long-standing research into how Arabic and Islamic philosophical traditions can enrich global debates on AI. The initiative aims to advance inclusive, practical, and ethical approaches to AI in international policy and diplomacy by bringing these perspectives to the table.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Internal chatbot Veritas helps Apple refine Siri features ahead of launch

Apple is internally testing its upcoming Siri upgrade with a chatbot-style tool called Veritas, according to a report by Bloomberg. The app enables employees to experiment with new capabilities and provide structured feedback before a public launch.

Veritas enables testers to type questions, engage in conversations, and revisit past chats, making it similar to ChatGPT and Gemini. Apple is reportedly using the feedback to refine Siri’s features, including data search and in-app actions.

The tool remains internal and is not planned for public release. Its purpose is to make Siri’s upgrade process more efficient and guide Apple’s decision on future chatbot-like experiences.

Apple executives have said they prefer integrating AI into daily tasks instead of offering a separate chatbot. Craig Federighi confirmed at WWDC that Apple is focused on natural task assistance rather than a standalone product.

Bloomberg reports that the new Siri will use Apple’s own AI models alongside external systems like Google’s Gemini, with a launch expected next spring.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Sam Altman predicts AGI could arrive before 2030

OpenAI CEO Sam Altman has warned that AI could soon automate up to 40 percent of the tasks humans currently perform. He made the remarks in an interview with German newspaper Die Welt, highlighting the potential economic shift AI will trigger.

Altman described OpenAI’s latest model, GPT-5, as the most advanced yet and claimed it is ‘smarter than me and most people’. He said artificial general intelligence (AGI), capable of outperforming humans in all areas, could arrive before 2030.

Instead of focusing on job losses, Altman suggested examining the percentage of tasks that AI will automate. He predicted that 30 to 40 per cent of tasks currently carried out by humans may soon be completed by AI systems.

These comments contribute to the growing debate about the societal impact of AI, with mass layoffs already being linked to automation. Altman emphasised that this wave of change will reshape economies and workplaces, requiring businesses and governments to prepare for disruption.

As AGI approaches, Altman urged individuals to focus on acquiring in-demand skills to stay relevant in an AI-enabled economy. The relationship between humans and machines, he said, will be permanently reshaped by these developments.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Persistent WordPress malware campaign hides as fake plugin to evade detection

A new malware campaign targets WordPress sites, utilising steganography and persistent backdoors to maintain unauthorised admin access. It uses two components that work together to maintain control.

The attack begins with malicious files disguised as legitimate WordPress components. These files are heavily obfuscated, create administrator accounts with hardcoded credentials, and bypass traditional detection tools. However, this ensures attackers can retain access even after security teams respond.

Researchers say the malware exploits WordPress plugin infrastructure and user management functions to set up redundant access points. It then communicates with command-and-control servers, exfiltrating system data and administrator credentials to attacker-controlled endpoints.

This campaign can allow threat actors to inject malicious code, redirect site visitors, steal sensitive data, or deploy additional payloads. Its persistence and stealth tactics make it difficult to detect, leaving websites vulnerable for long periods.

The main component poses as a fake plugin called ‘DebugMaster Pro’ with realistic metadata. Its obfuscated code creates admin accounts, contacts external servers, and hides by allowing known admin IPs.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Google unveils new Gemini Robotics models

Google has unveiled two new robotics models, Gemini Robotics 1.5 and Gemini Robotics-ER 1.5, designed to help robots better perceive, plan, and act in complex environments. The models aim to enable more capable robots to complete multi-step tasks efficiently and transparently.

Gemini Robotics 1.5 converts visual information and instructions into actions, letting robots think before acting and explain their reasoning. Gemini Robotics-ER 1.5 acts as a high-level planner, reasoning about the physical world and using tools like Google Search to support decisions.

Together, the models form an ‘agentic’ framework. ER 1.5 orchestrates a robot’s activities, while Robotics 1.5 carries them out, enabling the machines to tackle semantically complex tasks. The pairing strengthens generalisation across diverse environments and longer missions.

Google said Gemini Robotics-ER 1.5 is now available to developers through the Gemini API in Google AI Studio, while Gemini Robotics 1.5 is currently open to select partners. Both models advance robots’ reasoning, spatial awareness, and multi-tasking capabilities.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

Spotify launches new policies on AI and music spam

Spotify announced new measures to address AI risks in music, aiming to protect artists’ identities and preserve trust on the platform. The company said AI can boost creativity but also enable harmful content like impersonations and spam that exploit artists and cut into royalties.

A new impersonation policy has been introduced, clarifying that AI-generated vocal clones of artists are only permitted with explicit authorisation. Spotify is strengthening processes to block fraudulent uploads and mismatches, giving artists quicker recourse when their work is misused.

The platform will launch a new spam filter this year to detect and curb manipulative practices like mass uploads and artificially short tracks. The system will be deployed cautiously, with updates added as new abuse tactics emerge, in order to safeguard legitimate creators.

In addition, Spotify will back an industry standard for AI disclosures in music credits, allowing artists and rights holders to show how AI was used in production. The company said these steps show its commitment to protecting artists, ensuring transparency, and fair royalties as AI reshapes the music industry.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot

CISA warns of advanced campaign exploiting Cisco appliances in federal networks

US cybersecurity officials have issued an emergency directive after hackers breached a federal agency by exploiting critical flaws in Cisco appliances. CISA warned the campaign poses a severe risk to government networks.

Experts told CNN they believe the hackers are state-backed and operating out of China, raising alarm among officials. Hundreds of compromised devices are reportedly in use across the federal government, CISA stated, issuing a directive to rapidly assess the scope of this major breach.

Cisco confirmed it was urgently alerted to the breaches by US government agencies in May and quickly assigned a specialised team to investigate. The company provided advanced detection tools, worked intensely to analyse compromised environments, and examined firmware from infected devices.

Cisco stated that the attackers exploited multiple zero-day flaws and employed advanced evasion techniques. It suspects a link to the ArcaneDoor campaign reported in early 2024.

CISA has withheld details about which agencies were affected or the precise nature of the breaches, underscoring the gravity of the situation. Investigations are currently underway to contain the ongoing threat and prevent further exploitation.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

UK government considers supplier aid after JLR cyberattack

Jaguar Land Rover (JLR) is recovering from a disruptive cyberattack, gradually bringing its systems back online. The company is focused on rebuilding its operations, aiming to restore confidence and momentum as key digital functions are restored.

JLR said it has boosted its IT processing capacity for invoicing to clear its payment backlog. The Global Parts Logistics Centre is also resuming full operations, restoring parts distribution to retailers.

The financial system used for processing vehicle wholesales has been restored, allowing the company to resume car sales and registration. JLR is collaborating with the UK’s NCSC and law enforcement to ensure a secure restart of operations.

Production remains suspended at JLR’s three UK factories in Halewood, Solihull, and Wolverhampton. The company typically produces around 1,000 cars a day, but staff have been instructed to stay at home since the August cyberattack.

The government is considering support packages for the company’s suppliers, some of whom are under financial pressure. A group identifying itself as Scattered Lapsus$ Hunters has claimed responsibility for the incident.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

UN Secretary-General launches call for candidates for AI Scientific Panel

The UN Secretary-General has launched an open call for candidates to serve on the Independent International Scientific Panel on Artificial Intelligence.

The Panel was agreed by UN member states in September 2024 as part of the Global Digital Compact; its terms of reference were later defined in a UN General Assembly resolution adopted in August 2025. The 40-member Panel will provide evidence-based scientific assessments on AI’s opportunities, risks, and impacts. Its work will culminate in an annual, policy-relevant – but non-prescriptive –summary report presented to the Global Dialogue on AI Governance, along with up to two updates per year to engage with the General Assembly plenary.

Candidates with expertise in the following fields are invited to apply:

  • AI, including foundation models & generative AI, machine learning methods, core AI subfields (e.g. vision, language, speech/audio, robotics, planning & scheduling, knowledge representation), reliability, safety & alignment, cognitive & neuroscience links, human–AI interaction, AI security and infrastructure;
  • Applied AI, including science (foundational and applied in health, climate, life sciences, physics, health, social sciences, agriculture), engineering, industry and mobility (e.g. materials, drugs, transportation, smart cities, IoT, satellite, navigation), digital society (e.g. misinformation & disinformation, online harms, social networks, software engineering, web),
  • Related fields, including AI opportunity, risk and impact assessment, AI impacts on society, technology, economy, and environment, AI security and infrastructure, data, ethics, and rights, governance (e.g. public policy, international law, standards, oversight, compliance, foresight and scenario-building).

Following the call for nominations (open until 31 October 2025), the Secretary-General will recommend 40 members for appointment by the General Assembly.

For more information from the 80th session of the UN General Assembly, visit our dedicated page.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Google and Flo Health settle health data privacy suit for $56 million

Google has agreed to pay $48 million, and Flo Health, a menstrual tracking app, has agreed to pay $8 million to resolve claims that the app shared users’ health data without their consent.

The lawsuit alleged that Flo used third-party tools to transmit personal information, including menstruation and pregnancy details, to companies like Google, Meta, and analytics firm Flurry.

The class-action case, filed in 2021 by plaintiff Erica Frasko and later consolidated with similar complaints, accused Flo of violating privacy laws by allowing user data to be intercepted via embedded software development kits (SDKs).

Google’s settlement, disclosed this week, covers users who inputted reproductive health data between November 2016 and February 2019.

While neither Flo nor Google admitted wrongdoing, the settlement avoids the uncertainty of a trial. A notice to claimants stated the resolution helps sidestep the costs and risks of prolonged litigation.

Meta, a co-defendant, opted to go to trial and was found liable in August for violating California’s Invasion of Privacy Act. A judge recently rejected Meta’s attempt to overturn that verdict.

According to The Record, the case has drawn significant attention from privacy advocates and the tech industry, highlighting the potential legal risks of data-sharing practices tied to ad-tracking technology.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Diplo chatbot can make mistakes. Consider checking important information.