Telecommunications infrastructure

South Korea tightens ID checks with facial verification for phone accounts

Mandatory facial verification will be introduced in South Korea for anyone opening a new mobile phone account, as authorities try to limit identity fraud.

Officials said criminals have been using stolen personal details to set up phone numbers that later support scams such as voice phishing instead of legitimate services.

Major mobile carriers, including LG Uplus, Korea Telecom and SK Telecom, will validate users by matching their faces against biometric data stored in the PASS digital identity app.

Such a requirement expands the country’s identity checks rather than replacing them outright, and is intended to make it harder for fraud rings to exploit stolen data at scale.

The measure follows a difficult year for data security in South Korea, marked by cyber incidents affecting more than half the population.

SK Telecom reported a breach involving all 23 million of its customers and now faces more than $1.5 billion in penalties and compensation.

Regulators also revealed that mobile virtual network operators were linked to 92% of counterfeit phones uncovered in 2024, strengthening the government’s case for tougher identity controls.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Romania investigates large scale cyber attack on national water body

Authorities in Romania have confirmed a severe ransomware attack on the national water administration ‘Apele Române’, which encrypted around 1,000 IT systems across most regional water basin offices.

Attackers used Microsoft’s BitLocker tool to lock files and then issued a ransom note demanding contact within seven days, although cybersecurity officials continue to reject any negotiation with criminals.

The disruption affected email systems, databases, servers and workstations instead of operational technology, meaning hydrotechnical structures and critical water management systems continued to function safely.

Staff coordinated activity by radio and telephone, and flood defence operations remained in normal working order while investigations and recovery progressed.

National cyber agencies, including the National Directorate of Cyber Security and the Romanian Intelligence Service’s cyber centre, are now restoring systems and moving to include water infrastructure within the state cyber protection framework.

The case underlines how ransomware groups increasingly target essential utilities rather than only private companies, making resilience and identity controls a strategic priority.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Fake weight loss adverts removed from TikTok

TikTok removed fake adverts for weight loss drugs after a company impersonating UK retailer Boots used AI-generated videos. The clips falsely showed healthcare professionals promoting prescription-only medicines.

Boots said it contacted TikTok after becoming aware of the misleading adverts circulating on the platform. TikTok confirmed the videos were removed for breaching its rules on deceptive and harmful advertising.

BBC reporting found the account was briefly able to repost the same videos before being taken down. The account appeared to be based in Hong Kong and directed users to a website selling the drugs.

UK health regulators warned that prescription-only weight loss medicines must only be supplied by registered pharmacies. TikTok stated that it continues to strengthen its detection systems and bans the promotion of controlled substances.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Italy fines Apple €98 million over App Store competition breach

Apple has been fined €98 million by Italy’s competition authority after regulators concluded that its App Tracking Transparency framework distorted competition in the app store market.

Authorities stated that the policy strengthened Apple’s dominant position while limiting how third-party developers collect advertising data.

The investigation found that developers were required to request consent multiple times for the same data processing purposes, creating friction that disproportionately affected competitors.

Regulators in Italy argued that equivalent privacy protections could have been achieved through a single consent mechanism instead of duplicated prompts.

According to the Italian authority, the rules were imposed unilaterally across the App Store ecosystem and harmed commercial partners reliant on targeted advertising. The watchdog also questioned whether the policy was proportionate from a data protection perspective under the EU law.

Apple rejected the findings and confirmed plans to appeal, stating that App Tracking Transparency prioritises user privacy over the interests of ad technology firms.

The decision follows similar penalties and warnings issued in France and Germany, reinforcing broader European scrutiny of platform governance.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

5G network slicing strengthens Madrid emergency communications

Madrid has strengthened emergency response capabilities through a new collaboration between Orange and Ericsson, integrating a dedicated slice within Orange’s 5G Standalone network.

Advanced radio access and core technologies allow emergency teams to operate on prioritised connectivity during high network demand.

Police, fire and medical services benefit from guaranteed bandwidth and low-latency communications, ensuring uninterrupted coordination during incidents.

The infrastructure by Ericsson enables dynamic switching between public 5G and emergency spectrum, supporting rapid deployment when physical networks are compromised.

Resilience remains central to the design, with autonomous power systems and redundancy maintaining operations during outages. Live video transmission from firefighters’ helmets illustrates how real time data improves risk assessment and decision making on the ground.

By combining telecom innovation with public safety needs, the initiative reinforces Madrid’s role in the emergency communications leadership of the EU and demonstrates how 5G can support critical services at scale.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

AI and cloud transform New Zealand services

Microsoft’s first New Zealand hyperscale cloud region has celebrated one year, providing local businesses and services with AI-powered tools and secure data storage. Organisations are using these capabilities to innovate, improve operations and enhance customer experiences.

Collaborations with Spark and Whakarongorau Aotearoa show AI can reduce administrative workloads and strengthen service delivery. Initiatives also support skills development, helping students, teachers and job seekers gain technology-focused credentials.

The datacentre operates sustainably, using renewable energy and waterless cooling systems to lower carbon emissions. These technologies help public services and businesses become more efficient while reducing environmental impact.

Looking ahead, Microsoft plans to expand AI adoption across New Zealand, supporting productivity, community services and responsible innovation for the next phase of digital growth.

Would you like to learn more about AI, tech, and digital diplomacy? If so, ask our Diplo chatbot!

Global data centre investment hits record $61bn

Investment in data centres worldwide reached a record $61bn in 2025, according to a new report from S&P Global. The surge is being driven by growing demand for AI workloads, with construction and expansion showing little sign of slowing.

Analysts describe the market as a ‘global construction frenzy’ as companies race to meet rising hardware and energy requirements.

The report highlights that investors, unable to buy existing facilities, are increasingly turning to new builds. The sector, with 500 data centres in the UK and 4,000 in the US, is projected to expand faster over the next five years than the previous five.

The AI boom is pushing energy- and computer-intensive workloads to new extremes.

Concerns are emerging about potential overspending in the AI sector. Analysts note that companies like OpenAI, Oracle, and Nvidia are investing heavily despite uncertain returns.

OpenAI is expected to spend $143bn from 2024 to 2029, prompting concerns over profitability while still holding potential for major innovations. The rapid expansion of data centres also carries significant energy implications.

The International Energy Agency forecasts data centre electricity demand could more than double by 2030, matching Japan’s current total consumption and underscoring the scale needed for AI growth.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

Mac users lose ChatGPT voice access in 2026

OpenAI has confirmed that Voice interactions will stop working in the ChatGPT macOS app as of 15 January 2026, affecting users who rely on spoken conversations instead of typing.

The company states that the change is part of a broader effort to streamline voice experiences across its platforms.

Currently, the Mac app allows hands-free, real-time conversations with ChatGPT. After the deadline, voice functionality will remain accessible through chatgpt.com, as well as on iOS, Android, and the Windows app. OpenAI stresses that no other macOS features will be removed.

According to OpenAI, recent updates have already brought Voice mode closer to standard chat interactions on mobile and the web, allowing users to review earlier messages and engage with visual content while speaking.

The company has suggested that the existing macOS Voice feature may not support its next-generation approach.

Mac users will be able to continue using Voice mode until mid-January 2026. After this date, voice-based interactions will require switching to other supported platforms until a potential macOS update is introduced.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

New Kimwolf Android botnet linked to a record-breaking DDoS attacks

Cybersecurity researchers have uncovered a rapidly expanding Android botnet known as Kimwolf, which has already compromised approximately 1.8 million devices worldwide.

The malware primarily targets smart TVs, set-top boxes, and tablets connected to residential networks, with infections concentrated in countries including Brazil, India, the US, Argentina, South Africa, and the Philippines.

Analysis by QiAnXin XLab indicates that Kimwolf demonstrates a high degree of operational resilience.

Despite multiple disruptions to its command-and-control infrastructure, the botnet has repeatedly re-emerged with enhanced capabilities, including the adoption of Ethereum Name Service to harden its communications against takedown efforts.

Researchers also identified significant similarities between Kimwolf and AISURU, one of the most powerful botnets observed in recent years. Shared source code, infrastructure, and infection scripts suggest both botnets are operated by the same threat group and have coexisted on large numbers of infected devices.

AISURU has previously drawn attention for launching record-setting distributed denial-of-service attacks, including traffic peaks approaching 30 terabits per second.

The emergence of Kimwolf alongside such activity highlights the growing scale and sophistication of botnet-driven cyber threats targeting global internet infrastructure.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!

US platforms signal political shift in DSA risk reports

Major online platforms have submitted their 2025 systemic risk assessments under the Digital Services Act as the European Commission moves towards issuing its first fine against a Very Large Online Platform.

The reports arrive amid mounting political friction between Brussels and Washington, placing platform compliance under heightened scrutiny on both regulatory and geopolitical fronts.

Several US-based companies adjusted how risks related to hate speech, misinformation and diversity are framed, reflecting political changes in the US while maintaining formal alignment with EU law.

Meta softened enforcement language, reclassified hate speech under broader categories and reduced visibility of civil rights structures, while continuing to emphasise freedom of expression as a guiding principle.

Google and YouTube similarly narrowed references to misinformation, replaced established terminology with less charged language and limited enforcement narratives to cases involving severe harm.

LinkedIn followed comparable patterns, removing references to earlier commitments on health misinformation, civic integrity and EU voluntary codes that have since been integrated into the DSA framework.

X largely retained its prior approach, although its report continues to reference cooperation with governments and civil society that contrasts with the platform’s public positioning.

TikTok diverged from other platforms by expanding disclosures on hate speech, election integrity and fact-checking, likely reflecting its vulnerability to regulatory action in both the EU and the US.

European regulators are expected to assess whether these shifts represent genuine risk mitigation or strategic alignment with US political priorities.

As systemic risk reports increasingly inform enforcement decisions, subtle changes in language, scope and emphasis may carry regulatory consequences well beyond their formal compliance function.

Would you like to learn more about AI, tech and digital diplomacy? If so, ask our Diplo chatbot!