Privacy and data protection

Mistral AI unveils powerful API for autonomous agents

French AI startup Mistral AI has stepped into the agentic AI arena by launching a new Agents API.

The move puts it in direct competition with leading players like OpenAI, Anthropic, and Google, all of whom are racing to develop autonomous AI agents capable of handling multistep tasks with minimal oversight.

The API provides developers with tools to build intelligent agents powered by Mistral’s language models. These agents can perform advanced tasks such as interpreting Python code, conducting web searches, generating images, and retrieving information from uploaded documents.

Support for orchestrating multiple agents and maintaining stateful conversations enables agents to collaborate and retain context during user interactions.

Among its standout features is compatibility with the Model Context Protocol (MCP), an emerging open standard created by Anthropic that simplifies how agents connect with third-party apps and data sources.

With major tech firms already on board, Mistral’s adoption suggests MCP is quickly becoming the foundation for seamless agent integration.

The company demonstrated several real-world use cases, including a financial analyst, a coding assistant for GitHub, a travel planner, and a personalised nutritionist.

These applications showcase how Mistral’s technology could support business automation and daily tasks alike, potentially reshaping how users interact with software altogether.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Customer data exposed in Adidas cyber attack

Adidas has confirmed a cyber attack that led to the compromise of customer data held by a third-party service partner.

According to the company, unauthorised access was gained to consumer contact details submitted during previous interactions with its customer service help desk. Payment credentials and passwords were not affected.

Affected individuals are now being notified directly, with the company expressing sincere regret for any concern caused. Contact information, such as names and email addresses, appears to be the primary type of data exposed.

Steps were taken immediately to contain the incident, with cybersecurity experts brought in to assist in a detailed investigation. Adidas stressed its commitment to safeguarding user data and is reviewing its systems to prevent similar breaches in future.

This incident adds to a growing list of cyber attacks targeting major UK retailers. Recent breaches involving Marks & Spencer, Co-op, and Harrods have caused operational disruption, prompting a wider investigation by the National Crime Agency into possible links among the attacks.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

Taiwan rebuffs China’s hacking claims as disinformation

Taiwan has rejected accusations from Beijing that its ruling party orchestrated cyberattacks against Chinese infrastructure. Authorities in Taipei instead accused China of spreading false claims in an effort to manipulate public perception and escalate tensions.

On Tuesday, Chinese officials alleged that a Taiwan-backed hacker group linked to the Democratic Progressive Party (DPP) had targeted a technology firm in Guangzhou.

They claimed more than 1,000 networks, including systems tied to the military, energy, and government sectors, had been compromised across ten provinces in recent years.

Taiwan’s National Security Bureau responded on Wednesday, stating that the Chinese Communist Party is manipulating false information to mislead the international community.

Rather than acknowledging its own cyber activities, Beijing is attempting to shift blame while undermining Taiwan’s credibility, the agency said.

Taipei further accused China of long-running cyberattacks aimed at stealing funds and destabilising critical infrastructure. Officials described such campaigns as part of cognitive warfare designed to widen social divides and erode public trust within Taiwan.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Iranian hacker admits role in Baltimore ransomware attack

An Iranian man has pleaded guilty to charges stemming from a ransomware campaign that disrupted public services across several US cities, including a major 2019 attack in Baltimore.

The US Department of Justice announced that 37-year-old Sina Gholinejad admitted to computer fraud and conspiracy to commit wire fraud, offences that carry a maximum combined sentence of 30 years.

Rather than targeting private firms, Gholinejad and his accomplices deployed Robbinhood ransomware against local governments, hospitals and non-profit organisations from early 2019 to March 2024.

The attack on Baltimore alone resulted in over $19 million in damage and halted critical city functions such as water billing, property tax collection and parking enforcement.

Instead of simply locking data, the group demanded Bitcoin ransoms and occasionally threatened to release sensitive files. Cities including Greenville, Gresham and Yonkers were also affected.

Although no state affiliation has been confirmed, US officials have previously warned of cyber activity tied to Iran, allegations Tehran continues to deny.

Gholinejad was arrested at Raleigh-Durham International Airport in January 2025. The FBI led the investigation, with support from Bulgarian authorities. Sentencing is scheduled for August.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EU extends cybersecurity deadline for wireless devices

The European Commission has extended the deadline for mandatory cybersecurity requirements targeting wireless and connected devices sold within the EU.

Under the Delegated Act (2022/30) of the Radio Equipment Directive, manufacturers must embed robust security features to guard against risks such as unauthorised access and data breaches. The rules will now take effect from 1 August 2025.

A broad range of products will be affected, including mobile phones, tablets, cameras, and telecommunications devices using radio signals.

Internet of Things (IoT) items—such as baby monitors, smartwatches, fitness trackers, and connected industrial machinery—also fall within the scope. Any device capable of transmitting or receiving data wirelessly may be subject to the new requirements.

The deadline extension aims to give manufacturers additional time to adopt harmonised standards and integrate cybersecurity into product design. The Commission emphasised the importance of early action to avoid compliance issues when the rules become binding.

Despite the grace period, businesses are urged to act now by reviewing development cycles and addressing potential vulnerabilities well ahead of the implementation date.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EU workshop gathers support and scrutiny for the DSA

A packed conference centre in Brussels hosted over 200 stakeholders on 7 May 2025, as the European Commission held a workshop on the EU’s landmark Digital Services Act (DSA).

The pioneering law aims to protect users online by obliging tech giants—labelled as Very Large Online Platforms and Search Engines (VLOPSEs)—to assess and mitigate systemic risks their services might pose to society at least once a year, instead of waiting for harmful outcomes to trigger regulation.

Rather than focusing on banning content, the DSA encourages platforms to improve internal safeguards and transparency. It was designed to protect democratic discourse from evolving online threats like disinformation without compromising freedom of expression.

Countries like Ukraine and Moldova are working closely with the EU to align with the DSA, balancing protection against foreign aggression with open political dialogue. Others, such as Georgia, raise concerns that similar laws could be twisted into tools of censorship instead of accountability.

The Commission’s workshop highlighted gaps in platform transparency, as civil society groups demanded access to underlying data to verify tech firms’ risk assessments. Some are even considering stepping away from such engagements until concrete evidence is provided.

Meanwhile, tech companies have already rolled back a third of their disinformation-related commitments under the DSA Code of Conduct, sparking further concern amid Europe’s shifting political climate.

Despite these challenges, the DSA has inspired interest well beyond EU borders. Civil society groups and international institutions like UNESCO are now pushing for similar frameworks globally, viewing the DSA’s risk-based, co-regulatory approach as a better alternative to restrictive speech laws.

The digital rights community sees this as a crucial opportunity to build a more accountable and resilient information space.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Google aims for profit with new AI Search

At its annual developer event, Google I/O, Google unveiled a new feature called AI Mode, built directly into its core product, Google Search.

Rather than being a separate app, AI Mode integrates a chatbot into the search engine, allowing users to ask complex, detailed queries and receive direct answers along with curated web links. Google hopes this move will stop users from drifting to other AI tools instead of its own services.

The launch follows concerns that Google Search was starting to lose ground. Investors took notice when Apple’s Eddy Cue revealed that Safari searches had dropped for the first time in April, as users began to favour AI-powered alternatives.

A decline like this led to a 7% drop in Alphabet’s stock, highlighting just how critical search remains to Google’s dominance. By embedding AI into Search, Google aims to maintain its leadership instead of risking a steady erosion of its user base.

Unlike most AI platforms still searching for profitability, Google’s AI Mode is already positioned to make money. Advertising—long the engine of Google’s revenue—will be introduced into AI Mode, ensuring it generates income just as traditional search does.

While rivals burn through billions running large language models, Google is simply monetising the same way it always has.

AI Mode also helps defend Google’s biggest asset. Rather than seeing AI as a threat, Google embraced it to reinforce Search and protect the advertising revenue it depends on.

Most AI competitors still rely on expensive, unsustainable models, whereas Google is leveraging its existing ecosystem instead of building from scratch. However, this gives it a major edge in the race for AI dominance.

Would you like to learn more about AI, tech and digital diplomacyIf so, ask our Diplo chatbot!

China blames Taiwan for tech company cyberattack

Chinese authorities have accused Taiwan’s ruling Democratic Progressive Party of backing a cyberattack on a tech company based in Guangzhou.

According to public security officials in the city, an initial police investigation linked the attack to a foreign hacker group allegedly supported by the Taiwanese government.

The unnamed technology firm was reportedly targeted in the incident, with local officials suggesting political motives behind the cyber activity. They claimed Taiwan’s Democratic Progressive Party had provided backing instead of the group acting independently.

Taiwan’s Mainland Affairs Council has not responded to the allegations. The ruling DPP has faced similar accusations before, which it has consistently rejected, often describing such claims as attempts to stoke tension rather than reflect reality.

A development like this adds to the already fragile cross-strait relations, where cyber and political conflicts continue to intensify instead of easing, as both sides exchange accusations in an increasingly digital battleground.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Melania Trump’s AI audiobook signals a new era in media creation

Melania Trump has released an audiobook version of her memoir, but the voice readers hear isn’t hers in the traditional sense. Instead, it’s an AI-generated replica, created under her guidance and produced using technology from ElevenLabs.

Announcing the release as ‘The AI Audiobook,’ Trump declared this innovation as a step into the future of publishing, highlighting how AI is now entering mainstream media production. That move places AI-generated content into the public spotlight, especially as tech companies like Google and OpenAI are rolling out advanced tools to create audio, video, and even entire scenes with minimal human input.

While experts note that a complete replacement of voice actors and media professionals is unlikely in the immediate future, Trump’s audiobook represents a notable shift that aligns with rising interest from television and media companies looking to explore AI integration to compete with social media creators.

Industry observers suggest this trend could lead to a more interactive form of media. Imagine, for instance, engaging in a two-way conversation with a virtual Melania Trump about her book.

Though this level of interactivity isn’t here yet, it’s on the horizon as companies experiment with AI-generated personalities and digital avatars to enhance viewer engagement and create dynamic experiences. Still, the growth of generative AI sparks concern about job security in creative fields.

While some roles, like voiceover work, are vulnerable to automation, others—especially those requiring human insight and emotional intelligence, like investigative journalism—remain more resistant. Rather than eliminating jobs outright, AI may reshape media employment, demanding hybrid skills that combine traditional storytelling with technological proficiency.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Hackers are selling 94 billion stolen cookies on Telegram

Cybercriminals are trading nearly 94 billion stolen browser cookies on Telegram, with over 20% still active and capable of granting direct access to user accounts.

These cookies, essential for keeping users logged in and websites functioning smoothly, are being repurposed as tools for account hijacking, bypassing login credentials and putting personal data at risk. Security experts warn that hundreds of millions of users globally could be exposed.

The data, revealed by cybersecurity firm NordVPN, shows that the theft spans 253 countries, with Brazil, India, Indonesia, Vietnam, and the US among the most affected.

Google services were the prime target, with over 4.5 billion stolen cookies linked to Google accounts, followed by YouTube, Microsoft, and Bing. Many of these cookies contain session IDs and user identifiers, which allow hackers to impersonate users and access their online accounts without detection.

The surge in cookie theft marks a 74% increase over the previous year, driven largely by the spread of malware. Redline, Vidar, and LummaC2 are among the most prolific infostealers, collectively responsible for over 60 billion stolen cookies.

These malware strains extract saved data from browsers and often act as gateways for more advanced cyberattacks.

New strains like RisePro, Stealc, Nexus, and Rhadamanthys are also emerging, designed to steal browser credentials and banking data more efficiently.

Many of these stolen cookies are being exchanged on Telegram channels, raising alarm about the app’s misuse. In response, Telegram stated:

The sale of private data is expressly forbidden by Telegram’s terms of service and is removed whenever discovered. Moderators empowered with custom AI and machine learning tools proactively monitor public parts of the platform and accept reports to remove millions of pieces of harmful content each year.’

With cookie theft becoming an increasingly common tactic, experts urge users to regularly clear cookies, use secure browsers, and consider additional protective measures to guard their digital identity.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!