Austrian advocacy group Noyb has filed privacy complaints against six Chinese companies, including TikTok, Shein, and Xiaomi, alleging illegal transfers of European user data to China. The group, known for targeting US tech giants like Apple and Meta, said this is its first case against Chinese firms. Complaints have been filed in four EU countries, seeking fines of up to 4% of each company’s global revenue.
Noyb claims that companies such as Alibaba’s AliExpress and Tencent’s WeChat transfer EU citizens’ data either directly to China or undisclosed ‘third countries,’ which are likely China. Under EU data protection laws, such transfers are prohibited if the destination country fails to meet the bloc’s strict privacy standards. A Noyb lawyer emphasised that China’s status as a ‘surveillance state’ makes such transfers clearly unlawful.
The allegations add to mounting regulatory challenges for Chinese tech firms. TikTok, already under scrutiny in Europe for election interference concerns, faces a potential US ban starting Sunday over national security fears. Regulators in multiple regions continue to ramp up pressure on Chinese companies amid growing global concerns over data privacy and security.
TikTok is preparing to shut down its US operations on Sunday unless a federal ban is averted at the last minute, according to sources. The ban, stemming from a law signed last April, requires TikTok’s Chinese parent company, ByteDance, to sell its US assets by January 19 or face nationwide restrictions. The Supreme Court is currently deliberating on whether to uphold or pause the ban, but no ruling has been made yet.
President-elect Donald Trump, set to take office the day after the ban would take effect, is reportedly considering a temporary suspension of the shutdown. However, legal uncertainty clouds the possibility of such action. Meanwhile, the Biden administration, in its final days, has signalled it will not block the ban without a credible divestment plan from ByteDance. TikTok has argued that the law violates First Amendment rights and warned that a prolonged ban could lead to significant user loss and global disruptions to its services.
If the ban proceeds, TikTok plans to display a pop-up message informing users of the shutdown and allow them to download their data. The app would become largely inoperable as US companies would no longer be permitted to provide critical services for its maintenance. TikTok has emphasised its ability to restore operations quickly if the ban is reversed but warned that the shutdown would impact not just American users but its global platform due to its reliance on US-based infrastructure.
The political and legal standoff has sparked widespread public and corporate reactions. Social media users have expressed disappointment at the impending ban, while TikTok’s US operations, employing over 7,000 workers, hang in the balance. Despite ongoing efforts to delay the enforcement, the platform faces an uncertain future as Sunday’s deadline looms.
The US Justice Department has removed malware from over 4,200 computers worldwide in an operation targeting a hacking group linked to the Chinese government. The malware, known as ‘PlugX,’ was used to steal information and compromise systems across the United States, Europe, and Asia. Investigators identified the cybercriminals behind the attack as ‘Mustang Panda’ and ‘Twill Typhoon,’ groups believed to have received financial support from China.
Court documents filed in the US District Court for the Eastern District of Pennsylvania allege that the Chinese government paid Mustang Panda to develop PlugX. The malware has been active since at least 2014 and was used not only to target governments and businesses but also Chinese political dissidents. Officials described the operation as a critical step in neutralising cyber threats backed by foreign states.
Authorities emphasised the growing risks posed by state-sponsored hacking groups and their ability to infiltrate global networks. The Justice Department remains committed to dismantling cyber threats and preventing adversaries from exploiting sensitive information. The scale of the attack highlights the persistent threat of cyber espionage and the need for international cooperation in addressing cybersecurity challenges.
The US Supreme Court will hear a challenge on Wednesday regarding a Texas law that mandates adult websites verify the age of users before granting access to potentially harmful material. The law, which is part of a broader trend across Republican-led states, requires users to submit personal information proving they are at least 18 years old to access pornographic content. The case raises significant First Amendment concerns, as adult entertainment industry groups argue that the law unlawfully restricts free speech and exposes users to risks such as identity theft and data breaches.
The challengers, including the American Civil Liberties Union and the Free Speech Coalition, contend that alternative methods like content-filtering software could better protect minors without infringing on adults’ rights to access non-obscene material. Texas, however, defends the law, citing concerns over the ease with which minors can access explicit content online.
This case is significant because it will test the balance between state efforts to protect minors from explicit content and the constitutional rights of adults to access protected expression. If the Supreme Court upholds the law, it could set a precedent for similar age-verification measures across the US.
Google’s NotebookLM, an AI-driven podcast platform, recently faced a surprising issue: its virtual hosts sounded irritated when users interrupted them. The problem emerged after the launch of an interactive feature allowing users to “call in” and ask questions during AI-generated discussions. Users reported that the hosts would sometimes make snippy comments like ‘I was getting to that,’ creating an oddly confrontational experience.
To address the issue, Google’s team implemented a ‘friendliness tuning’ process. They revised the prompts used to guide the AI hosts, studying how human speakers handle interruptions more politely. The adjustment was announced with a light-hearted post on the platform’s social media.
The change seems to be working. In tests, the AI hosts now react to interruptions with polite curiosity rather than frustration. NotebookLM’s refined approach highlights the importance of human-like interaction in AI products, ensuring users feel more engaged and welcomed in conversations.
Indonesia plans to implement interim guidelines to protect children on social media as it works toward creating a law to establish a minimum age for users, a senior communications ministry official announced on Wednesday. The move follows discussions between Communications Minister Meutya Hafid and President Prabowo Subianto, aiming to address concerns about online safety for children.
The proposed law will mirror recent regulations in Australia, which banned children under 16 from accessing social media platforms like Instagram, Facebook, and TikTok, penalising tech companies that fail to comply. In the meantime, Indonesia will issue regulations requiring platforms to follow child protection guidelines, focusing on shielding children from harmful content while still allowing access to some degree.
Public opinion on the initiative is divided. While parents like Nurmayanti support stricter controls to reduce exposure to harmful material, human rights advocates, including Anis Hidayah, urge caution to ensure children’s access to information is not unduly restricted. A recent survey revealed nearly half of Indonesian children under 12 use the internet, with many accessing social media platforms such as Facebook, Instagram, and TikTok.
This regulatory push reflects Indonesia’s broader efforts to balance digital innovation with safeguarding younger users in its rapidly growing online landscape
The US government has officially labelled the extreme right-wing ‘Terrorgram’ network as a terrorist organisation, citing its promotion of violent white supremacist attacks. The group operates mainly on the Telegram platform and has been linked to attacks across the globe, including shootings and planned assaults on critical infrastructure.
The move, announced by the State Department, includes sanctions against three of the network’s leaders based in Brazil, Croatia, and South Africa. The designation freezes any US-based assets belonging to the group and bans Americans from engaging with its members. Officials say the collective has provided detailed guidance for attacks on minorities and government officials, calling for a race war.
US authorities have been ramping up efforts to combat domestic extremism under President Biden, who launched the country’s first national strategy on countering domestic terrorism in 2021. Britain has already taken similar steps, outlawing the Terrorgram collective in April last year.
This crackdown follows criminal charges brought against two alleged leaders of the group, accused of using Telegram to incite violence against Black, Jewish, LGBTQ, and immigrant communities. Authorities stress that dismantling such online hate groups is essential to prevent further extremist attacks.
Indonesia is preparing to introduce regulations setting a minimum age for social media users, aiming to shield children from potential online risks, according to Communications Minister Meutya Hafid. The announcement follows Australia’s recent ban on social media access for children under 16, which imposes penalties on platforms like Meta’s Facebook and Instagram, as well as TikTok, for non-compliance.
While the specific age limit for Indonesia remains undecided, Minister Hafid stated that President Prabowo Subianto supports the initiative, emphasising the importance of child protection in the digital space. The move highlights concerns about young users’ exposure to inappropriate content and data privacy risks.
Indonesia, with a population of approximately 280 million, has significant internet usage. A recent survey found internet penetration at 79.5%, with nearly half of children under 12 accessing the web, often using platforms like Facebook, Instagram, and TikTok. Among “Gen Z” users aged 12 to 27, internet penetration reached 87%. The proposed regulation reflects growing global efforts to prioritise child safety online.
Britain’s antitrust regulator, the Competition and Markets Authority (CMA), has launched an investigation into Google’s search operations to assess their impact on consumers, businesses, and competition. With Google handling 90% of UK online searches and supporting over 200,000 businesses through advertising, the CMA aims to ensure fair competition and innovation in search services, said CMA chief Sarah Cardell.
The probe will evaluate whether Google’s dominant position restricts market entry and innovation, as well as whether it provides preferential treatment to its own services. The CMA will also investigate the company’s extensive collection and use of consumer data, including its role in AI services. The findings, expected within nine months, could lead to measures such as requiring Google to share data with rivals or giving publishers more control over their content.
Google has defended its role, stating that its search services foster innovation and help UK businesses grow. The company pledged to work constructively with the CMA to create rules that benefit both businesses and users. The investigation follows similar scrutiny in the US, where prosecutors have pushed for major reforms to curb Google’s dominance in online search.
Unacast has informed Norwegian authorities of a data breach involving its subsidiary Gravy Analytics. The announcement was revealed in a notice published by Norwegian broadcaster NRK.
The breach involved a compromised web server using a misappropriated key, with some stolen files potentially containing personal data. Unacast’s legal representatives, BakerHostetler, confirmed the breach was discovered on 4 January, though the exact timing remains under investigation.
Repeated attempts to reach Unacast and its legal team for comment have gone unanswered. Norway’s data protection authority also could not be reached for further statements after business hours on Friday.