Privacy and data protection Archives | Page 20 of 267

Customer trust at risk as retail cyberattacks grow

Retailers face escalating cyber threats as hackers increasingly target customer data, eroding trust and damaging long-term brand value.

Deloitte warns that data breaches and ransomware attacks are becoming more frequent and costly, with some retailers facing losses reaching hundreds of millions, alongside declining consumer confidence.

The expansion of AI-driven personalisation has intensified privacy concerns, as customers weigh convenience against data protection.

While many shoppers accept sharing personal information in exchange for value, confidence depends on clear safeguards, transparent data use and credible security practices across digital channels.

Deloitte argues that leading retailers integrate cybersecurity into their core business strategy, rather than treating it as a compliance obligation.

Priorities include protecting critical digital assets, modernising security operations and building cyber-aware cultures capable of responding to AI-enabled fraud, preserving customer trust and sustaining revenue growth.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Vietnam expands 5G and strengthens digital trust

Vietnam’s 5G network now reaches approximately 59 percent of the population, slightly over one year after commercial services launched in October 2024.

Government data presented at Internet Day 2025 show that Vietnam ranks 10th globally for fixed broadband speed and 15th for mobile broadband, reflecting rapid improvements in national connectivity.

Officials described the Internet as a second living space for citizens, with nearly 80 million users spending an average of seven hours online each day for work, education and social interaction.

Authorities highlighted that expanded 5G coverage supports the development of a digital economy, e-government services and a more connected digital society.

Alongside infrastructure growth, policymakers stressed the need for stronger digital trust.

Vietnam is shifting towards clearer legal frameworks instead of reliance on voluntary self-regulation, while prioritising cybersecurity, data governance and protection against online fraud, deepfakes and AI-driven deception to sustain long-term digital transformation.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Private surveillance raises concerns in New Orleans

New Orleans has become the first US city to use real time facial recognition through a privately operated system. The technology flags wanted individuals as they pass cameras, with alerts sent directly to police despite ongoing disputes between city officials.

A local non profit runs the network independently and sets its own guard rails for police cooperation. Advocates claim the arrangement limits bureaucracy, while critics argue it bypasses vital public oversight and privacy protections.

Debate over facial recognition has intensified nationwide as communities question accuracy, fairness and civil liberties. New Orleans now represents a major test case for how such tools may develop without clear government regulation.

Officials remain divided over long term consequences while campaigners warn of creeping surveillance risks. Residents are likely to face years of uncertainty as policies evolve and private systems grow more influential.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI-driven Christmas scams surge online

Cybersecurity researchers are urging greater caution as Christmas approaches, warning that seasonal scams are multiplying rapidly. Check Point has recorded over 33,500 festive phishing emails and more than 10,000 deceptive social ads within two weeks.

AI tools are helping criminals craft convincing messages that mirror trusted brands and local languages. Attackers are also deploying fake e-commerce sites with AI chatbots, as well as deepfake audio and scripted calls to strengthen vishing attempts.

Smishing alerts imitating delivery firms are becoming more widespread, with recent months showing a marked rise in fraudulent parcel scams. Victims are often tricked into sharing payment details through links that imitate genuine logistics updates.

Experts say fake shops and giveaway scams remain persistent risks, frequently launched from accounts created within the past three months. Users are being advised to ignore unsolicited links, verify retailers and treat unexpected offers with scepticism.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Oracle and Google Cloud launch AI database service in India

The US tech company, Oracle, has expanded Oracle Database@Google Cloud to India, making the service available through Google Cloud’s Mumbai region.

Enterprises can access Oracle Exadata, Autonomous AI Database and AI Lakehouse services while keeping data in the region to meet sovereignty and regulatory requirements.

The multicloud offering allows organisations to combine Oracle enterprise data with Google Cloud analytics and AI tools, including BigQuery, Vertex AI and Gemini models.

Customers can modernise applications and migrate mission-critical workloads without sacrificing performance, security or low-latency access.

Oracle Database@Google Cloud is available through the Google Cloud Marketplace, enabling customers to procure services via trusted partners instead of navigating complex contracting models.

Oracle and Google Cloud partners can also integrate the service into broader multicloud solutions.

The launch reflects growing demand for flexible multicloud architectures in India, supporting AI-driven innovation, advanced analytics and accelerated IT modernisation across regulated and data-intensive industries.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

UK-EU cyber dialogue strengthens policy alignment

The third UK-EU Cyber Dialogue was held in Brussels on 9 and 10 December 2025, bringing together senior officials under the UK-EU Trade and Cooperation Agreement to strengthen cooperation on cybersecurity and digital resilience.

The meeting was co-chaired by Andrew Whittaker from the UK Foreign, Commonwealth and Development Office and Irfan Hemani from the Department for Science, Innovation and Technology, alongside EU representatives from the European External Action Service and the European Commission.

Officials from Europol and ENISA also participated, reinforcing operational and regulatory coordination rather than fragmented policy approaches.

Discussions covered cyber legislation, deterrence strategies, countering cybercrime, incident response and cyber capacity development, with an emphasis on maintaining strong security standards while reducing unnecessary compliance burdens on industry.

Both sides confirmed that the next UK-EU Cyber Dialogue will take place in London in 2026.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Credit reporting breach exposes 5.6 millions consumers through third party API

US credit reporting company 700Credit has confirmed a data breach affecting more than 5.6 million individuals after attackers exploited a compromised third-party API used to exchange consumer data with external integration partners.

An incident that originated from a supply chain failure after one partner was breached earlier in 2025 and failed to notify 700Credit.

The attackers launched a sustained, high-volume data extraction campaign starting on October 25, 2025, which operated for more than two weeks before access was shut down.

Around 20 percent of consumer records were accessed, exposing names, home addresses, dates of birth and Social Security numbers, while internal systems, payment platforms and login credentials were not compromised.

Despite the absence of financial system access, the exposed personal data significantly increases the risk of identity theft and sophisticated phishing attacks impersonating credit reporting services.

The breach has been reported to the Federal Trade Commission and the FBI, with regulators coordinating responses through industry bodies representing affected dealerships.

Individuals impacted by the incident are currently being notified and offered two years of free credit monitoring, complimentary credit reports and access to a dedicated support line.

Authorities have urged recipients to act promptly by monitoring their credit activity and taking protective measures to minimise the risk of fraud.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

No sensitive data compromised in SoundCloud incident

SoundCloud has confirmed a recent security incident that temporarily affected platform availability and involved the limited exposure of user data. The company detected unauthorised activity on an ancillary service dashboard and acted immediately to contain the situation.

Third-party cybersecurity experts were engaged to investigate and support the response. The incident resulted in two brief denial-of-service attacks, temporarily disrupting web access.

Approximately 20% of users were affected; however, no sensitive data, such as passwords or financial details, were compromised. Only email addresses and publicly visible profile information were involved.

In response, SoundCloud has strengthened its systems, enhancing monitoring, reviewing identity and access controls, and auditing related systems. Some configuration updates have led to temporary VPN connectivity issues, which the company is working to resolve.

SoundCloud emphasises that user privacy remains a top priority and encourages vigilance against phishing. The platform will continue to provide updates and take steps to minimise the risk of future incidents.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Zoom launches AI Companion 3.0 with expanded features

Zoom has unveiled AI Companion 3.0, its latest AI assistant, which extends functionality beyond meetings with a new web interface, workflow tools, and agentic search. Select features are now accessible to free Zoom Workplace Basic users, while full access is available via a paid add-on.

Free users can generate meeting summaries, action item lists, and insights, albeit with usage limitations.

The updated AI Companion introduces agentic retrieval, enabling searches across meeting summaries, transcripts, and connected services, such as Google Drive and Microsoft OneDrive, with Gmail and Outlook support planned.

Users can automatically generate follow-up tasks and draft emails using a post-meeting template, while the Daily Reflection Report summarises tasks and updates to help prioritise work.

A new agentic writing mode allows drafting, editing, and refining business documents in a canvas-style interface, and AI-created content can be exported in multiple formats, including Markdown, PDF, Word, and Zoom Docs.

Additional tools include AI-based brainstorming and, for Custom AI Companion users, a deep research mode consolidating insights from multiple meetings and documents.

Basic plan users get limited access for up to three meetings per month, including automated summaries, in-meeting queries, and AI-generated notes. Up to 20 prompts are included via the side panel and web interface, while broader access requires a subscription priced at Rs 1,080 per month.

The new web interface also offers built-in prompts to guide users in exploring the assistant’s capabilities.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Study warns that LLMs are vulnerable to minimal tampering

Researchers from Anthropic, the UK AI Security Institute and the Alan Turing Institute have shown that only a few hundred crafted samples can poison LLM models. The tests revealed that around 250 malicious entries could embed a backdoor that triggers gibberish responses when a specific phrase appears.

Models ranging from 600 million to 13 billion parameters (such as Pythia) were affected, highlighting the scale-independent nature of the weakness. A planted phrase such as ‘sudo’ caused output collapse, raising concerns about targeted disruption and the ease of manipulating widely trained systems.

Security specialists note that denial-of-service effects are worrying, yet deceptive outputs pose far greater risk. Prior studies already demonstrated that medical and safety-critical models can be destabilised by tiny quantities of misleading data, heightening the urgency for robust dataset controls.

Researchers warn that open ecosystems and scraped corpora make silent data poisoning increasingly feasible. Developers are urged to adopt stronger provenance checks and continuous auditing, as reliance on LLMs continues to expand for AI purposes across technical and everyday applications.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!