One of India’s top insurers, Star Health, has taken legal action against Telegram and a hacker following the leak of personal data. The data breach involved medical reports and policyholder information being shared through chatbots on Telegram.
The case comes as Telegram faces global criticism for being exploited for illegal activities. Founder Pavel Durov, who was recently arrested, denies the allegations and insists the platform is addressing these issues. The insurer also sued Cloudflare for hosting websites distributing stolen data.
A Tamil Nadu court granted a temporary injunction to block the chatbots and websites sharing this information. Star Health reassured customers, stating that sensitive data remains secure, though policy and claim documents were leaked.
The lawsuit is part of a larger trend of hackers using chatbots to sell stolen data, with India representing the largest portion of global victims. Telegram removed the offending chatbots, but new ones quickly appeared.
Google has filed a formal complaint with the European Commission over Microsoft’s cloud business practices. The tech giant argues that Microsoft uses its dominant position with Windows Server to stifle competition and lock customers into its Azure platform. Specifically, Google claims Microsoft enforces heavy mark-ups on users of rival cloud services and restricts access to essential security updates.
The dispute follows a recent settlement where Microsoft paid €20 million to resolve concerns raised by European cloud providers. However, the agreement excluded key rivals like Google and Amazon Web Services (AWS), fuelling further criticism. Google insists only regulatory action will halt what it sees as Microsoft’s monopolistic approach, urging the EU to step in and ensure fair competition.
Microsoft denies the accusations, stating they have settled similar issues amicably with other European providers. A Microsoft spokesperson expressed confidence that Google would fail to persuade the European Commission, as it had failed with EU businesses.
Google believes immediate intervention is necessary to prevent the cloud market from becoming increasingly restrictive. They warn that Microsoft’s influence over the European cloud sector, which is growing rapidly, could limit options for customers and hurt competitors.
A federal judge has ruled that New York City’s law requiring food delivery companies to share customer data with restaurants is unconstitutional. The decision, handed down by US District Judge Analisa Torres, found the law violated the First Amendment by regulating commercial speech inappropriately.
The law, introduced in 2021 to support local restaurants recovering from the COVID-19 pandemic, required delivery platforms like DoorDash and UberEats to share customer details. Delivery companies in US argued that the law threatened both customer privacy and their business by allowing restaurants to use the data for their own marketing purposes.
Judge Torres stated that New York City failed to prove the law was necessary and suggested alternative methods to support restaurants, such as letting customers opt-in to share their data or providing financial incentives. City officials are reviewing the ruling, while delivery companies hailed it as a victory for data protection.
The New York City Hospitality Alliance expressed disappointment, claiming the ruling hurts small businesses and calling for the city to appeal the decision.
OpenAI’s official press account on X was hacked by cryptocurrency scammers, promoting a fraudulent blockchain token, ‘$OPENAI.’ The scammers posted a message claiming the fake token would grant users access to future OpenAI beta programs. The post linked to a phishing website designed to steal cryptocurrency wallet credentials from unsuspecting users. Despite the scam being evident, the post and the associated site remained active, with comments disabled to make the hack less noticeable.
This incident is part of a larger pattern, with OpenAI leadership accounts also targeted in similar phishing campaigns earlier this year. In June 2023, OpenAI CTO Mira Murati’s account was hacked, posting a nearly identical message about the non-existent “$OPENAI” token. Other key OpenAI staff, such as chief scientist Jakub Pachocki and researcher Jason Wei, were also hacked recently, further exposing vulnerabilities.
Cryptocurrency scams targeting high-profile X accounts have become increasingly common. In previous years, accounts belonging to Apple, Elon Musk, and Joe Biden were compromised to promote scams. These fraudulent campaigns often use fake offers or phishing schemes to steal funds from victims by tricking them into sending cryptocurrency to scam wallets.
Cryptocurrency scams have cost United States citizens $5.6 billion in 2023 alone, a significant increase from the previous year. With over 50,000 cases reported in the first half of 2024, losses have already reached $2.5 billion, according to the Federal Trade Commission, marking an alarming rise in the threat posed by such scams.
Cloudflare, internet service providers, and network equipment providers have embarked on a collaborative journey to enhance the safety and privacy of internet users globally. By offering Cloudflare’s DNS resolvers at no cost, these providers can deliver advanced security features crucial in today’s digital landscape.
That partnership empowers ISPs and equipment manufacturers to improve their service offerings and ensures that users can enjoy a safer browsing experience without additional costs. With children spending more time online, particularly during the COVID-19 pandemic, the demand for protective measures has never been greater.
Cloudflare’s initiatives, such as the launch of 1.1.1.1 for Families, allow these partners to implement content filtering and security features tailored specifically for households. The strategic alignment ensures that families can confidently navigate the internet, knowing that harmful content is being filtered and their online activities are shielded from threats.
Furthermore, Cloudflare, alongside ISPs and network equipment providers, addresses the challenges users face in setting up effective online protections. Many consumers find configuring DNS settings and implementing security features daunting. To tackle this issue, Cloudflare is working with its partners to simplify the setup process.
By integrating Cloudflare’s services directly into their platforms, ISPs can provide a seamless user experience that encourages the adoption of these important safety measures. That collaborative approach ensures that even the least tech-savvy users can benefit from enhanced security without feeling overwhelmed.
Why does this matter?
Cloudflare, internet service providers, and network equipment providers understand the need for flexible, customisable solutions to meet diverse user needs. With Cloudflare’s Gateway product, ISPs can offer advanced filtering options that let users tailor their online experience, including content restrictions and scheduling, such as limiting social media access. These customisable options empower users to control their online safety while boosting customer satisfaction and loyalty.
The International Telecommunication Union (ITU) and the UN Development Programme (UNDP) have forged a powerful alliance to highlight the transformative potential of digital technology in achieving the Sustainable Development Goals (SDGs). By combining their unique strengths, these organisations aim to establish a comprehensive framework that promotes innovation and fosters inclusivity within the digital realm.
Moreover, their partnership is dedicated to addressing critical global challenges by leveraging emerging technologies, ensuring that digital advancements are accessible and beneficial to all sectors of society, particularly marginalised communities. In addition to their commitment to innovation, ITU and UNDP prioritise enhancing digital infrastructure and connectivity in developing regions, fully aware that reliable and affordable internet access is fundamental to sustainable development.
They strive to bridge the digital divide through strategic investments and capacity-building initiatives, empowering local communities with the tools and knowledge to effectively utilise digital technologies. Consequently, this collaborative endeavour is essential for driving economic growth, improving educational opportunities, and enhancing health outcomes in underserved areas, ultimately fostering a more equitable digital ecosystem.
Furthermore, beyond infrastructure development, ITU and UNDP advocate for robust digital governance and policy frameworks that ensure the responsible use of technology. Their initiatives focus on promoting transparency and accountability and prioritise safeguarding privacy and security in the digital age. By emphasising digital literacy and skills development, they are rolling out training programs designed to equip individuals with the confidence to navigate the digital landscape effectively.
The European Commission has tasked the EU Agency for Cybersecurity (ENISA) with developing a cybersecurity certification scheme for the EU Digital Identity (EUDI) wallets. That move aims to standardise and comprehensively secure digital identity wallets across EU member states.
ENISA will create harmonised requirements to support national certification schemes, involving the establishment of reference standards, procedures, and specifications crucial for security and privacy protection. The certification process will align with the Cybersecurity Act and ensure that EUDI Wallets are secure, protecting users’ privacy and personal data while allowing cross-border usability throughout the EU.
The European Digital Identity Framework, effective since May, requires EU member states to start providing EUDI Wallets within two years of adopting their implementing acts. The EC concluded its collection of input on the cybersecurity certification scheme earlier this month, with feedback highlighting the importance of preventing excessive consumer data sharing. ENISA will consider existing certification schemes, such as the European Cybersecurity Certification Scheme on Common Criteria while developing the new framework.
Why does it matter?
ENISA’s ongoing collaboration with the eIDAS Expert Group and the Certification Subgroup, alongside recommendations from its Digital Identity Standards report and current EUDI Wallet pilot projects, will significantly influence the development of the certification scheme, ensuring a robust and trustworthy digital identification system across Europe.
OpenAI is expanding its Advanced Voice Mode (AVM) to more ChatGPT users, beginning with those subscribed to the Plus and Teams plans, while Enterprise and education customers will gain access next week. The updated AVM includes a redesigned interface, now featuring a blue animated sphere, and introduces five new voices: Arbor, Maple, Sol, Spruce, and Vale. These additions bring the total voice options to nine, replacing ‘Sky,’ which was removed after legal issues arose over its similarity to actress Scarlett Johansson’s voice.
The AVM update also includes improvements like better accent recognition and smoother conversations. OpenAI has incorporated customisation options, including Custom Instructions, which allow users to personalise ChatGPT’s responses, and Memory, which enables ChatGPT to recall past conversations. However, previously showcased features such as video and screen-sharing remain unavailable, with no confirmed timeline for their release.
Despite the updates, AVM is not yet available in certain regions, including the EU, the UK, and several others. OpenAI is actively refining the feature based on early user feedback, working to resolve glitches and improve overall performance for a smoother experience.
Mozilla has been hit with a privacy complaint by NOYB, an advocacy group, over tracking users of its Firefox browser. NOYB, based in Vienna, claims that Mozilla’s privacy-preserving attribution feature tracks user activity on websites without their explicit consent.
Mozilla responded, stating that its feature aims to improve advertising practices by reducing invasive tracking. While NOYB acknowledges the feature is less invasive, the group argues it still violates European privacy laws by being enabled by default.
Privacy activist Max Schrems’ organisation has criticised Mozilla for not allowing users to opt in. NOYB’s data protection lawyer, Felix Mikolasch, said users should be able to make a choice, and the current system infringes on their rights.
Cloudflare is launching a marketplace that will let websites charge AI companies for scraping their content, aiming to give smaller publishers more control over how AI models use their data. Large AI models scrape thousands of websites to train their systems, often without compensating the content creators, which could threaten the business models of many smaller websites. The marketplace, launching next year, will allow website owners to negotiate deals with AI model providers, charging them based on how often they scrape the site or by setting their terms.
Cloudflare’s launch of AI Audit is a big step for website owners to gain better control over AI bot activity on their sites. Providing detailed analytics on which AI bots access their content empowers site owners to make informed decisions about managing bot traffic. The ability to block specific bots while allowing others can help mitigate issues related to unwanted scraping, which can negatively impact performance and increase operational costs. This tool could be handy for businesses and content creators who rely on their online presence and want to safeguard their resources.
Cloudflare’s CEO, Matthew Prince, believes this marketplace will create a more sustainable system for publishers and AI companies. While some AI firms may resist paying for currently free content, Prince argues that compensating creators is crucial for ensuring the continued production of quality content. The initiative could help balance the relationship between AI companies and content creators, allowing even small publishers to profit from their data in the AI age.
