Governments across Africa should increase the protection of fibre optic cables from theft and vandalism, while also aligning regulations to boost tech infrastructure development, according to a Google executive. Charles Murito, Google’s head of government relations and public policy in Africa, emphasised the need to classify fibre cables as critical infrastructure, which would ensure severe consequences for those who damage them. Theft and vandalism targeting batteries, generators, and cables have driven up costs for infrastructure providers.
Murito, speaking at the Africa Tech conference, highlighted Google’s investments in subsea cables, including Equiano, connecting Africa with Europe, and the upcoming Umoja cable linking Africa and Australia. He stressed that better protections and regulatory harmonisation could make the continent more appealing to tech investors. Industry leaders agree that such measures are essential to encouraging business expansion in Africa.
Additionally, Murito has called for more infrastructure sharing among internet service providers to reduce data costs. The diverse regulations across African nations concerning permissions for cable installations hinder the expansion of fibre networks. Although South Africa‘s authorities have acknowledged the issue, urging law enforcement to act and proposing legal updates, fibre optic cables have yet to receive a new critical classification.
The National Cyber Security Centre (NCSC) and its international partners have issued an urgent advisory highlighting the growing trend of threat actors exploiting zero-day vulnerabilities, emphasising the importance of proactive security measures.
This joint advisory has been published by NCSC (UK), the US Cybersecurity and Infrastructure Security Agency (CISA), the US Federal Bureau of Investigation (FBI), US National Security Agency (NSA), Australian Cyber Security Centre (ACSC), Canadian Centre for Cyber Security (CCCS), New Zealand National Cyber Security Centre (NCSC-NZ), and CERT NZ.
The UK NCSC, in collaboration with cybersecurity agencies from the United States, Australia, Canada, New Zealand, and others, identified the top 15 most commonly exploited vulnerabilities of 2023. A majority of these vulnerabilities were initially targeted as zero-days—newly discovered flaws without immediate patches, allowing cybercriminals to strike high-priority targets before fixes were available.
The advisory highlights a notable shift compared to 2022, when fewer than half of the top vulnerabilities were exploited as zero-days. The rise in zero-day attacks has continued into 2024, underlining the evolving tactics of cyber adversaries.
The advisory urges organisations to stay vigilant in their vulnerability management practices, prioritising the timely application of security updates and ensuring that all assets are identified and protected. It also calls on technology vendors and developers to adopt secure-by-design principles to minimise product vulnerabilities from the outset.
Turkey‘s Personal Data Protection Board (KVKK) has fined Amazon’s gaming platform Twitch 2 million lira ($58,000) following a significant data breach, the Anadolu Agency reported. The breach, involving a leak of 125 GB of data, affected 35,274 individuals in Türkiye.
KVKK’s investigation revealed that Twitch failed to implement adequate security measures before the breach and conducted insufficient risk and threat assessments. The platform only addressed vulnerabilities after the incident occurred. As a result, KVKK imposed a 1.75 million lira fine for inadequate security protocols and an additional 250,000 lira for failing to report the breach promptly.
This penalty underscores the increasing scrutiny and regulatory actions against companies handling personal data in Türkiye, highlighting the importance of robust cybersecurity measures to protect user information.
T-Mobile‘s network was among those breached in a prolonged cyber-espionage campaign attributed to Chinese intelligence-linked hackers, according to a Wall Street Journal report. The attackers allegedly targeted multiple US and international telecom companies to monitor cellphone communications of high-value intelligence targets. T-Mobile confirmed it was aware of the industry-wide attack but stated there was no significant impact on its systems or evidence of customer data being compromised.
The Federal Bureau of Investigation (FBI) and the US Cybersecurity and Infrastructure Security Agency (CISA) recently disclosed that China-linked hackers intercepted surveillance data intended for American law enforcement by infiltrating telecom networks. Earlier reports revealed breaches into US broadband providers, including Verizon, AT&T, and Lumen Technologies, where hackers accessed systems used for court-authorised wiretapping.
China has consistently denied allegations of engaging in cyber espionage, rejecting claims by the US and its allies that it orchestrates such operations. The latest revelations highlight persistent vulnerabilities in critical communication networks targeted by state-backed hackers.
Federal Trade Commissioner Melissa Holyoak has called for closer scrutiny of how AI products handle data from younger users, raising concerns about privacy and safety. Speaking at an American Bar Association meeting in Washington, Holyoak questioned what happens to information collected from children using AI tools, comparing their interactions to asking advice from a toy like a Magic 8 Ball.
The FTC, which enforces the Children’s Online Privacy Protection Act, has previously sued platforms like TikTok over alleged violations. Holyoak suggested the agency should evaluate its authority to investigate AI privacy practices as the sector evolves. Her remarks come as the FTC faces a leadership change with President-elect Donald Trump set to appoint a successor to Lina Khan, known for her aggressive stance against corporate consolidation.
Holyoak, considered a potential acting chair, emphasised that the FTC should avoid a rigid approach to mergers and acquisitions, while also predicting challenges to the agency’s worker noncompete ban. She noted that a Supreme Court decision on the matter could provide valuable clarity.
The Irish media regulator, Coimisiún na Meán, has mandated that online platforms TikTok, X, and Meta must take decisive steps to prevent the spread of terrorist content on their services, giving them three months to report on their progress.
This action follows notifications from EU authorities under the Terrorist Content Online Regulation. If the platforms fail to comply, the regulator can impose fines of up to four percent of their global revenue.
This decision aligns with Ireland’s broader enforcement of digital laws, including the Digital Services Act (DSA) and a new online safety code. The DSA has already prompted investigations, such as the European Commission’s probe into X last December, and Ireland’s new safety code will impose binding content moderation rules for video-sharing platforms with European headquarters in Ireland. These initiatives aim to curb the spread of harmful and illegal content on major social media platforms.
Crypto exchange Gemini mistakenly issued a price alert on Wednesday claiming Bitcoin had surpassed $110,000. The exchange later apologised, explaining that the notification was caused by a technical error. In reality, Bitcoin had reached an all-time high of $93,000, fuelled by optimism surrounding Donald Trump’s election victory.
Gemini faced backlash from users confused by the false alert, with some speculating that it may have been triggered prematurely by an employee or a misconfigured system. The exchange reassured users that such mistakes are rare and promised to prevent similar incidents in future.
Errors like these are not uncommon in the crypto industry. Exchanges, including Binance and Coinbase, have previously reported incorrect price displays due to glitches or faulty data. While these mistakes are usually resolved quickly, they can still cause significant disruption for traders relying on real-time information.
Kuwait KEMS-Zajil Telecom and Emirates MBCOM Technologies have partnered to strengthen digital infrastructure and cybersecurity across the Middle East, aiming to help businesses remain secure and agile in a connected, fast-evolving world. This partnership formalised through a Memorandum of Understanding (MoU) on 16 October 2024, focuses on providing enterprise solutions in critical areas like network optimisation, cloud services, and cybersecurity.
By merging their expertise, the companies intend to deliver advanced solutions that optimise network performance and bolster defences against cyber threats, essential capabilities for supporting business growth and resilience. Moreover, both companies see this partnership as a strategic move to drive digital transformation in the region, effectively meeting the rising demand for secure, efficient, and scalable digital services.
Furthermore, KEMS-Zajil Telecom emphasised that collaborating with MBCOM Technologies allows them to expand their digital services portfolio with cutting-edge solutions that enhance growth and security. Similarly, MBCOM Technologies highlighted how this partnership positions both companies to bring innovative technology to regional businesses. Ultimately, with its dual focus on advanced infrastructure and robust security, this collaboration reflects a shared vision to empower Middle Eastern enterprises through comprehensive digital solutions that drive long-term growth and resilience.
The Philippines Department of Transportation and UltraPass ID have partnered to pilot a biometric passenger processing system at selected airports following a memorandum of understanding (MOU) signing. The pilot test is scheduled to begin in early 2025 at Iloilo International Airport, with additional testing planned for Tacloban, Laoag, and Bicol International Airport later in the year.
The system, which embeds biometric data in passports, is designed to streamline airport operations by swiftly enabling passengers to pass through check-in, security, and boarding gates, enhancing both convenience and security. The implementation will occur in two phases – Phase 1 will involve Filipino passengers using the national ID, while Phase 2 will cater to foreign passengers with e-passports travelling domestically. Additionally, the system will integrate with the Philippine national ID system, which aims to reduce processing times and provide a touchless, more efficient airport experience.
Furthermore, this initiative is part of the US Smart Cities Trade Mission, which features 12 US companies from various sectors such as cybersecurity, AI, and tourism. These companies are already contributing to the growth of key Philippine industries, including the digital economy, semiconductors, and tourism.
Through this partnership, the Philippines aims to improve its airport operations and strengthen trade and investment opportunities. In doing so, the involvement of US companies sets high standards for labour practices, environmental responsibility, and corporate social engagement.
Hackers with alleged links to China have stolen sensitive data from US telecommunications firms, targeting information intended for law enforcement agencies. US officials announced the breach on Wednesday, revealing that multiple telecom networks had been compromised. The hackers reportedly accessed call records and communications of individuals in government and political roles, according to a joint statement from the FBI and the Cybersecurity and Infrastructure Security Agency (CISA).
Among the data stolen was information connected to court-ordered surveillance requests made by US law enforcement. The agencies provided limited details about the breach and have yet to disclose the number of companies affected. CISA and the FBI declined to comment further, with additional insights expected as investigations continue.
The incident aligns with earlier reports in the Wall Street Journal, which suggested that Chinese hackers may have infiltrated systems intended for law enforcement to monitor communications. Such claims have led to growing concerns about the security of US telecom infrastructure, particularly given reports of targeted attacks on the phones of high-profile political figures.
The Department of Homeland Security’s Cyber Safety Review Board will investigate the breach, part of an effort to evaluate significant digital security threats. China’s embassy in Washington declined to comment on the latest hacking allegations, which it has previously dismissed as unfounded.
