Privacy and data protection

UAE experts warn on AI privacy risks in art apps

A surge in AI applications transforming selfies into Studio Ghibli-style artwork has captivated social media, but UAE cybersecurity experts are raising concerns over privacy and data misuse.

Dr Mohamed Al Kuwaiti, Head of Cybersecurity for the UAE Government, warned that engaging with unofficial apps could lead to breaches or leaks of personal data. He emphasised that while AI’s benefits are clear, users must understand how their personal data is handled by these platforms.

He called for strong cybersecurity standards across all digital platforms, urging individuals to be more cautious with their data.

Media professionals are also sounding alarms. Adel Al-Rashed, an Emirati journalist, cautioned that free apps often mimic trusted platforms but could exploit user data. He advised users to stick to verified applications, noting that paid services, like ChatGPT’s Pro edition, offer stronger privacy protections.

While acknowledging the risks, social media influencer Ibrahim Al-Thahli highlighted the excitement AI brings to creative expression. He urged users to focus on education and safe engagement with the technology, underscoring the UAE’s goal to build a resilient digital economy.

For more information on these topics, visit diplomacy.edu.

AI transforms global healthcare with major growth ahead

The healthcare sector is poised for significant growth as AI continues to revolutionise the industry. A new report from Avant Technologies predicts an influx of AI-powered solutions in healthcare, with key technology giants leading the charge.

Avant Technologies and Ainnova, in their joint venture, plan to showcase their AI-powered Vision AI platform at the 2025 Mexico Healthcare Innovation Summit.

The platform, aimed at early disease detection, is nearing approval from the US Food and Drug Administration (FDA) and is already in clinical trials in Southeast Asia and South America.

Apple and Amazon are also entering the AI healthcare space, with Apple launching an AI-powered health coach to guide users on diet and exercise, while Amazon is expanding its AI solutions with a healthcare chatbot.

Meanwhile, GE Healthcare has seen success with its AI-driven cardiac imaging, which has garnered FDA approval. The World Health Organization (WHO) supports AI integration in healthcare, particularly for outpatient care and early diagnosis, though it has urged regulators to be cautious of potential risks.

AI in healthcare is expected to grow exponentially, reaching a market valuation of $613 billion by 2034. The sector’s rapid expansion is driven by increasing adoption rates, particularly for early disease detection, administrative efficiency, and personalised medicine.

Despite data privacy concerns, the adoption of AI tools in fields like dermatology, oncology, and cardiovascular health is expected to surge. North America is predicted to lead the market, followed by Europe and South Asia, as more healthcare institutions embrace AI technologies.

For more information on these topics, visit diplomacy.edu.

Hackers leak data from Indian software firm in major breach

A major cybersecurity breach has reportedly compromised a software company based in India, with hackers claiming responsibility for stealing nearly 1.6 million rows of sensitive data on 19 December 2024.

A hacker identified as @303 is said to have accessed and exposed customer information and internal credentials, with the dataset later appearing on a dark web forum via a user known as ‘frog’.

The leaked data includes email addresses linked to major Indian insurance providers, contact numbers, and possible administrative access credentials.

Analysts found that the sample files feature information tied to employees of companies such as HDFC Ergo, Bajaj Allianz, and ICICI Lombard, suggesting widespread exposure across the sector.

Despite the firm’s stated dedication to safeguarding data, the incident raises doubts about its cybersecurity protocols.

The breach also comes as India’s insurance regulator, IRDAI, has begun enforcing stricter cyber measures. In March 2025, it instructed insurers to appoint forensic auditors in advance and perform full IT audits instead of waiting for threats to surface.

A breach like this follows a string of high-profile incidents, including the Star Health Insurance leak affecting 31 million customers.

With cyberattacks in India up by 261% in early 2024 and the average cost of a breach now ₹19.5 crore, experts warn that insurance firms must adopt stronger protections instead of relying on outdated defences.

For more information on these topics, visit diplomacy.edu.

AI site faces backlash for copying Southern Oregon news

A major publishing organisation has issued a formal warning to Good Daily News, an AI-powered news aggregator, demanding it cease the unauthorised scraping of content from local news outlets across Southern Oregon and beyond. The News Media Alliance, which represents 2,200 publishers, sent the letter on 25 March, urging the national operator to respect publishers’ rights and stop reproducing material without permission.

Good Daily runs over 350 online ‘local’ news websites across 47 US states, including Daily Medford and Daily Salem in Oregon. Though the platforms appear locally based, they are developed using AI and managed by one individual, Matt Henderson, who has registered mailing addresses in both Ashland, Oregon and Austin, Texas. Content is reportedly scraped from legitimate local news sites, rewritten by AI, and shared in newsletters, sometimes with source links, but often without permission.

News Media Alliance president Danielle Coffey said such practices undermine the time, resources, and revenue of local journalism. Many publishers use digital tools to block automated scrapers, though this comes at a financial cost. The organisation is working with the Oregon Newspaper Publishers Association and exploring legal options. Others in the industry, including Heidi Wright of the Fund for Oregon Rural Journalism, have voiced strong support for the warning, calling for greater action to defend the integrity of local news.

For more information on these topics, visit diplomacy.edu.

WooCommerce responds to alleged data breach claim

A hacker going by the alias ‘Satanic’ recently claimed responsibility for a significant data breach affecting websites that use WooCommerce, a leading eCommerce platform. The attacker alleged that over 4.4 million customer records were compromised, including personal and corporate data such as email addresses, phone numbers, physical addresses, and social media profiles, as well as company revenues, staff sizes, and tech stacks.

The original announcement was made on Breach Forums, a known cybercrime forum, where the hacker stated that the data was available for sale via private messages or Telegram. While initial reports—including one by HackRead—linked the breach to WooCommerce-based stores, WooCommerce has since issued an official statement denying that its systems were involved in the incident.

‘We can confirm that no WooCommerce data has been involved in the breach described in these articles. Our team quickly investigated the data samples and compared them against our own records. We determined that the data was not obtained through a breach of WooCommerce.com or any other Automattic services.’ — Jay Walsh, Director of Communications, WooCommerce.

The company believes that the leaked data originated from a third-party service that aggregates publicly available information about e-commerce sites. It is unclear whether the data was accessed legally or obtained through other means.

The attacker claimed the breach was achieved by exploiting vulnerabilities in third-party systems integrated with WooCommerce-powered websites—such as CRMs or marketing platforms—rather than through WooCommerce itself. However, no technical evidence has been shared to substantiate this claim.

The incident follows previous breach claims by the same hacker involving platforms like Magento and Twilio’s SendGrid, the latter of which was also denied by the company.

WooCommerce, owned by Automattic, powers a large share of global online shops. While the platform remains secure according to its developers, the case highlights ongoing concerns about the security of third-party tools and integrations.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

EU prepares new data strategy for AI growth

The European Commission will soon launch a consultation on its upcoming Data Union Strategy, a key part of efforts to boost Europe’s leadership in AI.

The strategy, set to be published by the end of the year, aims to make it easier for businesses and public bodies to share data securely and efficiently across the EU.

The initiative supports the broader AI Continent Action Plan, expected to be unveiled this week, which seeks to encourage faster adoption of AI technologies by European companies.

Instead of relying on fragmented systems, the Commission wants to improve data access, digital infrastructure, and cloud capabilities while investing in talent and streamlining complex processes.

The plan includes the creation of AI factories where companies can train models using EU-based resources, and a separate Cloud and AI Development Act later this year will promote energy-efficient investments to support these goals.

Public feedback on the Data Union Strategy will be gathered from April to June as part of the consultation process.

Despite the ambition, the Commission acknowledges ongoing concerns such as uncertainty around international data flows and challenges accessing suitable data for generative AI.

Strict privacy laws like the GDPR, instead of enabling wider AI training, have led to frustration from major tech firms over regulatory delays in Europe.

For more information on these topics, visit diplomacy.edu.

Meta to block livestreaming for under 16s without parental permission

Meta will soon prevent children under 16 from livestreaming on Instagram unless their parents explicitly approve.

The new safety rule is part of broader efforts to protect young users online and will first be introduced in the UK, US, Canada and Australia, before being extended to the rest of Europe and beyond in the coming months.

The company explained that teenagers under 16 will also need parental permission to disable a feature that automatically blurs images suspected of containing nudity in direct messages.

These updates build on Meta’s teen supervision programme introduced last September, which gives parents more control over how their children use Instagram.

Instead of limiting the changes to Instagram alone, Meta is now extending similar protections to Facebook and Messenger.

Teen accounts on those platforms will be set to private by default, and will automatically block messages from strangers, reduce exposure to violent or sensitive content, and include reminders to take breaks after an hour of use. Notifications will also pause during usual bedtime hours.

Meta said these safety tools are already being used across at least 54 million teen accounts. The company claims the new measures will better support teenagers and parents alike in making social media use safer and more intentional, instead of leaving young users unprotected or unsupervised online.

For more information on these topics, visit diplomacy.edu.

TikTok affair, China disagrees with Trump over $54B deal due to tariffs rise

The fate of TikTok hangs in the balance as China and the US trade moves over a potential deal to keep the app alive for its 170 million American users. 

On 9 April 2025, China’s commerce ministry declared that any sale of TikTok must pass its government’s strict review, throwing a wrench into negotiations just as President Donald Trump hinted that a deal remains within reach.

China’s stance is clear: no deal gets the green light without approval. 

The ministry stressed that TikTok’s sales must comply with Chinese laws, particularly those governing technology exports, a nod to a 2020 regulation that gives Beijing veto power over the app’s algorithm, the secret ingredient behind its viral success. 

The disagreement comes after Trump’s recent tariff hikes, which slapped a 54% duty on Chinese goods, prompting Beijing to push back hard. 

China had already signalled it wouldn’t budge on the deal following Trump’s tariff announcement, a move that doesn’t seem to give TikTok too much significance in a broader trade war.

Meanwhile, Trump, speaking on 9 April 2025, kept hope alive, insisting that a TikTok deal is ‘still on the table.’ He extended the deadline for ByteDance, TikTok’s Chinese parent, to find a non-Chinese buyer by 75 days, pushing the cutoff to mid-June after a near-miss on 5 April

The deal, which would spin off TikTok’s US operations into a new entity majority-owned by American investors, could have been nearly finalised before China’s objections stalled it

Investors, too, are on edge, with the US entity’s future clouded by geopolitical sparring. 

Trump’s optimism, paired with his earlier willingness to ease tariffs, shows he’s playing a long game, balancing national security fears with a desire to keep the app functional for its massive US audience.

Washington has long worried that TikTok’s Chinese ownership makes it a conduit for Beijing to spy on the Americans or sway public opinion, a concern that led to a 2024 law demanding ByteDance divest the app or face a ban

That law briefly shuttered TikTok in January 2025, only for Trump to step in with a reprieve. Now, with ByteDance poised to hold a minority stake in a US-based TikTok, the deal’s success hinges on China’s nod, a nod that looks increasingly elusive as trade tensions simmer. 

If China blocks the deal, it could set a precedent for other nations to tighten their grip on digital exports, radically reshaping governmental interdisciplinary approaches and cyberspace, posing a final question: will the internet, as we know it, remain as a globally unified societal enabler or it will divide into national space with new monopolies?

Virtual AI agents tested in social good experiment

Nonprofit organisation Sage Future has launched an unusual initiative that puts AI agents to work for philanthropy.

In a recent experiment backed by Open Philanthropy, four AI models, including OpenAI’s GPT-4o and two of Anthropic’s Claude Sonnet models, were tasked with raising money for a charity of their choice. Within a week, they collected $257 for Helen Keller International, which supports global health efforts.

The AI agents were given a virtual workspace where they could browse the internet, send emails, and create documents. They collaborated through group chats and even launched a social media account to promote their campaign.

Though most donations came from human spectators observing the experiment, the exercise revealed the surprising resourcefulness of these AI tools. one Claude model even generated profile pictures using ChatGPT and let viewers vote on their favourite.

Despite occasional missteps, including agents pausing for no reason or becoming distracted by online games, the experiment offered insights into the emerging capabilities of autonomous systems.

Sage’s director, Adam Binksmith, sees this as just the beginning, with future plans to introduce conflicting agent goals, saboteurs, and larger oversight systems to stress-test AI coordination and ethics.

For more information on these topics, visit diplomacy.edu.

Brinc drones raises $75M to boost emergency drone tech

Brinc Drones, a Seattle-based startup founded by 25-year-old Blake Resnick, has secured $75 million in fresh funding led by Index Ventures.

Known for its police and public safety drones, Brinc is scaling its presence across emergency services, with the new funds bringing total investment to over $157 million. The round also includes participation from Motorola Solutions, a major player in US security infrastructure.

The company, founded in 2017, is part of a growing wave of American drone startups benefiting from tightened restrictions on Chinese drone manufacturers.

Brinc’s drones are designed for rapid response in hard-to-reach areas and boast unique features, such as the ability to break windows or deliver emergency supplies.

The new partnership with Motorola will enable tighter integration into 911 call centres, allowing AI systems to dispatch drones directly to emergency scenes.

Despite growing competition from other US startups like Flock Safety and Skydio, Brinc remains confident in the market’s potential.

With its enhanced funding and Motorola collaboration, the company is aiming to position itself as a leader in AI-integrated public safety technology while helping shift drone manufacturing back to the US.

For more information on these topics, visit diplomacy.edu.

Diplo chatbot can make mistakes. Consider checking important information.