Network security

Japan passes landmark cyber defence bill

Japan has passed the Active Cyber Defence Bill, which permits the country’s military and law enforcement agencies to undertake pre-emptive measures in response to cyber threats.

The legislation adopts a two-pronged approach, focusing on both passive and active cyber defence. It includes the establishment of a cybersecurity council and an oversight committee to enhance threat analysis and information-gathering capabilities. The bill also introduces new requirements for critical infrastructure providers to report cybersecurity incidents promptly. Additionally, it enables the government to collect technical information—such as IP addresses and timestamps—from telecommunications providers in cases where a potential cyberattack is identified, to monitor communications between Japan and external actors.

The legislation also grants the military powers to carry out active measures against cyber threats. This includes the deployment of ‘cyber harm-prevention officers’, tasked with actions such as disrupting servers involved in cyberattacks and responding to critical incidents.

While the bill is positioned as part of Japan’s broader efforts to strengthen its cyber resilience, some commentary has raised questions about the balance between security and oversight.

For more information on these topics, visit diplomacy.edu.

Dutch police struggle with cyberattacks and underfunding

A leaked report has revealed serious financial and digital failings within the Dutch police, including unchecked spending on IT and cybersecurity.

Auditors from Ernst & Young found that the force must cut €160 million, raising concerns over national security and officer safety.

The Dutch Police Union warns that chronic understaffing, daily cyberattacks and a lack of digital resilience have pushed the system to breaking point.

A September data breach affected nearly all officers, and experts say over €300 million is needed to restore proper infrastructure.

Police Chief Janny Knol acknowledged the force underestimated the costs of digital transformation.

Merged systems from 24 regional departments have caused spiralling maintenance issues, while key tech projects run over budget and behind schedule. Urgent reforms are now planned.

For more information on these topics, visit diplomacy.edu.

European Commission charges €58.2 million in fees for DSA enforcement

The European Commission has charged the largest online platforms in the EU a total of €58.2 million in supervisory fees for their enforcement under the Digital Services Act (DSA).

These fees, which apply to platforms with over 45 million users per month, aim to fund the Commission’s activities for DSA enforcement, including administrative and human resource costs.

Meta, TikTok, and Google have filed five pending court cases against the fees, challenging the charges.

The DSA, designed to increase platform accountability, became fully applicable in February 2024, and the Commission has designated 25 Very Large Online Platforms, including major players like Amazon and LinkedIn.

During the 2024 period, the Commission launched formal proceedings against several platforms and sent over 100 requests for information.

However, instead of these fees fully covering the Commission’s expenses, they led to a deficit of €514,061. Investigations into platforms like X are ongoing, with transparency issues being a key concern.

For more information on these topics, visit diplomacy.edu.

OpenAI’s Ghibli-style tool raises privacy and data issues

OpenAI’s Ghibli-style AI image generator has taken social media by storm, with users eagerly transforming their photos into artwork reminiscent of Hayao Miyazaki’s signature style.

However, digital privacy activists are raising concerns that OpenAI might use this viral trend to collect thousands of personal images for AI training, potentially bypassing legal restrictions on web-scraped data.

Critics warn that while users enjoy the feature, they could unknowingly be handing over fresh facial data instead of protecting their privacy, raising ethical questions about AI and data collection.

Beyond privacy concerns, the trend has also reignited debates about AI’s impact on creative industries. Miyazaki, known for his hand-drawn approach, has previously expressed scepticism about artificial intelligence in animation.

Additionally, under GDPR regulations, OpenAI must justify data collection under “legitimate interest,” but experts argue that users voluntarily uploading images could give the company more freedom to use them instead of requiring further legal justification.

OpenAI has yet to issue an official statement regarding data safety, but ChatGPT itself warns users against uploading personal photos to any AI tool unless they are certain about its privacy policies.

Cybersecurity experts advise people to think twice before sharing high-resolution images online, use passwords instead of facial recognition for device security, and limit app access to their cameras.

As AI-generated image trends continue to gain popularity, the debate over privacy and data ownership is unlikely to fade anytime soon.

For more information on these topics, visit diplomacy.edu.

TikTok ban threatens 170 million American users

The US is just days away from imposing a ban on TikTok unless a deal is struck with its Chinese parent company ByteDance. The ban, set to take effect on Saturday, would affect 170 million American users of the popular app.

However, President Donald Trump has expressed confidence that an agreement will be reached in time. He extended the deadline from January to April 5 to give ByteDance more time to find a non-Chinese buyer for TikTok’s US operations.

Trump mentioned that there is significant interest from potential buyers, with private equity firm Blackstone reportedly evaluating a minority investment in TikTok’s US business.

The discussions are centred on ByteDance’s existing non-Chinese shareholders, including Susquehanna International Group and General Atlantic. Washington’s main concern is that TikTok’s ownership by ByteDance allows the Chinese government to potentially influence the app and collect data on Americans.

Despite the pressure, TikTok has yet to comment on the situation. If no agreement is reached by the deadline, TikTok faces the risk of being banned, though the app would remain on users’ devices if already installed. However, new users would not be able to download it.

The app is already banned in countries like India over similar national security concerns.

For more information on these topics, visit diplomacy.edu.

OpenAI faces copyright debate over Ghibli-style images

Studio Ghibli-style artwork has gone viral on social media, with users flocking to ChatGPT’s feature to create or transform images into Japanese anime-inspired versions. Celebrities have also joined the trend, posting Ghibli-style photos of themselves.

However, what began as a fun trend has sparked concerns over copyright infringement and the ethics of AI recreating the work of established artists instead of respecting their intellectual property.

While OpenAI has allowed premium users to create Ghibli-style images, users without subscriptions can still make up to three images for free.

The rise of this feature has led to debates over whether these AI-generated images violate copyright laws, particularly as the style is closely associated with renowned animator Hayao Miyazaki.

Intellectual property lawyer Even Brown clarified that the style itself isn’t explicitly protected, but he raised concerns that OpenAI’s AI may have been trained on Ghibli’s previous works instead of using independent sources, which could present potential copyright issues.

OpenAI has responded by taking a more conservative approach with its tools, introducing a refusal feature when users attempt to generate images in the style of living artists instead of allowing such images.

Despite this, the controversy continues, as artists like Karla Ortiz are suing other AI generators for copyright infringement. Ortiz has criticised OpenAI for not valuing the work and livelihoods of artists, calling the Ghibli trend a clear example of such disregard.

For more information on these topics, visit diplomacy.edu.

Ukrzaliznytsia reopens online ticket sales amid ongoing disruptions

Ukraine’s state-owned railway, Ukrzaliznytsia, has partially restored its online services following a large-scale cyber attack that disrupted passenger and freight transport systems. The attack, first reported on Sunday, forced passengers to buy tickets in person as the IT system went offline.

Ukrzaliznytsia announced that online ticket sales and refunds are now available in a backup format. However, due to high demand, technical interruptions may still occur, and passengers are advised to use the service only for urgent travel.

Despite ongoing challenges, the company reported that 12,000 tickets were successfully purchased through its online system after the restoration. The railway operator continues to monitor the situation and work towards fully stabilising its services in Ukraine.

For more information on these topics, visit diplomacy.edu.

EU to invest €1.3 billion in AI and digital skills

The European Commission has announced plans to invest €1.3 billion in artificial intelligence, cybersecurity, and digital skills development under the Digital Europe Programme for the period 2025 to 2027.

The funding aims to strengthen Europe’s position in advanced technologies and ensure that citizens and businesses can benefit from secure and cutting-edge digital tools.

Henna Virkkunen, the European Commission’s digital chief, emphasised the importance of the initiative, stating that European tech sovereignty depends on both technological innovation and the ability of people to improve their digital competences.

The investment reflects a strategic commitment to ensuring Europe remains competitive in the global digital landscape.

The Digital Europe Programme has been central to the EU’s digital transformation agenda. Through this latest funding round, the EU seeks to further enhance its technological resilience, support innovation, and prepare the workforce for the demands of a fast-evolving digital economy.

For more information on these topics, visit diplomacy.edu.

Commission seeks simpler, harmonised telecom rules

EU Tech Commissioner Henna Virkkunen has voiced support for using a Regulation, rather than a Directive, in the upcoming Digital Networks Act.

She says this would ensure consistent implementation across all member states, avoiding the patchwork seen under current telecom rules.

Virkkunen also hinted at easing merger rules and reducing ex-ante regulation within the existing framework, the European Electronic Communications Code.

These changes, she noted, could encourage investment and help the EU meet its goal of full 5G and fibre coverage by 2030.

She criticised slow national efforts to phase out high-risk Chinese components from 5G networks, calling for stronger action.

Her stance follows pressure from MEPs concerned about ongoing cybersecurity risks and lack of enforcement.

For more information on these topics, visit diplomacy.edu.