US

The US federal agency investigates how Meta uses consumer financial data for targeted advertising

The Consumer Financial Protection Bureau (CFPB) has informed Meta of its intention to consider ‘legal action’ concerning allegations that the tech giant improperly acquired consumer financial data from third parties for its targeted advertising operations. This federal investigation was revealed in a recent filing that Meta submitted to the Securities and Exchange Commission (SEC).

The filing indicates that the CFPB notified Meta on 18 September that it evaluated whether the company’s actions violate the Consumer Financial Protection Act, designed to protect consumers from unfair and deceptive financial practices. The status of the investigation remains uncertain, with the filing noting that the CFPB could initiate a lawsuit soon, seeking financial penalties and equitable relief.

Meta, the parent company of Instagram and Facebook, is facing increased scrutiny from regulators and state attorneys general regarding various concerns, including its privacy practices.

In the SEC filing, Meta disclosed that the CFPB has formally notified the company about an investigation focusing on the alleged receipt and use for advertising of financial information from third parties through specific advertising tools. The inquiry targets explicitly advertising related to ‘financial products and services,’ although it remains to be seen whether the scrutiny pertains to Facebook, Instagram, or both platforms.

While a Meta spokesperson refrained from commenting on the matter, the company stated in the filing that it disputes the allegations and believes any enforcement action would be unjustified. The CFPB also opted not to provide additional comments.

Amid this scrutiny, Meta recently reported $41 billion in revenue for the third quarter, a 19 percent increase from the previous year. A significant portion of this revenue is generated from its targeted advertising business, which has faced criticism from the Federal Trade Commission (FTC) and European regulators for allegedly mishandling user data and violating privacy rights.

In 2019, Meta settled privacy allegations related to the Cambridge Analytica scandal by paying the FTC $5 billion after it was revealed that the company had improperly shared Facebook user data with the firm for voter profiling. Last year, the European Union fined Meta $1.3 billion for improperly transferring user data from Europe to the United States.

Court debates FCC’s power over net neutrality

A US federal appeals court has expressed doubts over the Federal Communications Commission’s authority to reinstate net neutrality rules. A three-judge panel of the 6th Circuit Court in Cincinnati heard arguments from the telecom industry, which claims the FCC exceeded its powers by reintroducing the rules. Initially implemented under the Obama administration, net neutrality was later repealed by the Trump administration before being revived under President Joe Biden.

Net neutrality regulations prevent internet service providers (ISPs) from blocking or slowing access to websites and prohibit paid prioritisation arrangements that favour some content over others. The FCC’s April decision to classify broadband as a telecommunications service has drawn significant opposition from major telecom firms, while receiving backing from tech giants like Amazon, Apple, and Google. However, the 6th Circuit has temporarily blocked the rules’ enforcement while the legal challenge proceeds.

Central to the case is whether Congress granted the FCC sufficient authority to make sweeping regulations on internet services. The telecom industry argues that the ‘major questions’ doctrine, a judicial principle requiring clear congressional authorisation for significant regulatory action, should apply. Industry lawyer Jeff Wall contends that Congress should decide the matter, not an agency acting independently.

The judges also debated the FCC’s evolving stance on broadband regulation over recent administrations. Judge Griffin questioned whether frequent policy shifts weakened the FCC’s case, while Judge Kethledge urged a focus on statutory text rather than broad doctrines. A ruling on the matter could significantly impact the regulatory landscape for ISPs and the future of net neutrality.

AI robocall threats loom over US election

Election officials across the US are intensifying efforts to counter deepfake robocalls as the 2024 election nears, worried about AI-driven disinformation campaigns. Unlike visible manipulated images or videos, fake audio calls targeting voters are harder to detect, leaving officials bracing for the impact on public trust. A recent incident in New Hampshire, where a robocall falsely claimed to be from President Biden urging people to skip voting, highlighted how disruptive these AI-generated calls can be.

Election leaders have developed low-tech methods to counter this high-tech threat, such as unique code words to verify identities in sensitive phone interactions. In states like Colorado, officials have been trained to respond quickly to suspicious calls, including hanging up and verifying information directly with their offices. Colorado’s Secretary of State Jena Griswold and other leaders are urging election directors to rely on trusted contacts to avoid being misled by convincing deepfake messages.

To counter misinformation, some states are also enlisting local leaders and community figures to help debunk false claims. Officials in states like Minnesota and Illinois have collaborated with media outlets and launched public awareness campaigns, warning voters about potential disinformation in the lead-up to the election. These campaigns, broadcasted widely on television and radio, aim to preempt misinformation by providing accurate, timely information.

While no confirmed cases show that robocalls have swayed voters, election officials regard the potential impact as severe. Local efforts to counteract these messages, such as public statements and community outreach, serve as a reminder of the new and evolving risks AI technology brings to election security.

US Senate pushes for stronger security of internet backbone

The US Federal Communications Commission (FCC) is set to review its oversight of global undersea communications cables, marking the first major revision of its rules since 2001. Undersea cables, which carry over 95% of the world’s internet traffic, are seen as increasingly vulnerable to cyber threats and foreign interference, particularly from China and Russia. On 21 November, FCC Chair Jessica Rosenworcel plans to address how the commission’s regulations could adapt to the evolving economic and security challenges facing these crucial cables.

A bipartisan group of senators recently urged the Biden administration to prioritise securing the United States’ undersea infrastructure, highlighting concerns about possible sabotage and the growing involvement of Chinese firms in cable laying and maintenance. Washington has already restricted China from participating in key subsea cable contracts, citing espionage risks, and prevented direct connections between US territory and mainland China or Hong Kong.

In recent years, the US has blocked or canceled multiple subsea cable projects linked to China, emphasising the need to protect internet traffic from potential rerouting and mismanagement. The upcoming FCC review underscores the agency’s commitment to ensuring the resilience of global data flows, with potential policy shifts expected to impact both domestic and international internet security.

MediaTek CEO addresses geopolitical challenges in the chip industry

Amid growing geopolitical tensions, Rick Tsai, CEO of Taiwan’s top chip designer MediaTek, emphasised the company’s commitment to regulatory compliance in a recent earnings call. Tsai acknowledged the complex challenges posed by international relations but reassured stakeholders that MediaTek’s strong compliance program is designed to uphold ethical standards across diverse markets. He added that the company “will not do, shall we say, strange things” and is focused on protecting shareholder interests.

Taiwan, home to leading semiconductor firms like MediaTek and TSMC, plays a pivotal role in the global tech landscape, supplying major players in AI, including Nvidia. However, the tech sector faces rising pressures as Taiwan grapples with increasing military threats from China, which claims the island as its territory. Additionally, the upcoming US presidential election adds uncertainty; candidate Donald Trump has criticised Taiwan’s impact on the US chip market, proposing tariffs on imports and suggesting greater restrictions on international tech firms.

MediaTek, a TSMC customer, also contends with existing US limits on partnerships with Chinese tech companies such as Huawei. Recently, TSMC suspended shipments to a client after finding a chip intended for a different product had reached Huawei. Despite these challenges, MediaTek’s stock has risen by 27% this year, reflecting investor confidence in Taiwan’s enduring role within the tech industry.

China-linked hackers allegedly target US telecom, involving high-profile figures

China-linked hackers have reportedly breached telecommunications systems, targeting members of former President Donald Trump’s family and officials from the Biden administration, according to the New York Times. Individuals affected include Trump’s son Eric Trump, son-in-law Jared Kushner, and Senate Majority Leader Chuck Schumer.

Concerns surrounding this hacking group, known as “Salt Typhoon,” have intensified following media reports of their activities. Earlier this month, the Wall Street Journal reported that the group accessed broadband providers’ networks and gathered data from systems used by the federal government for court-authorised wiretapping.

No response was received from the State Department or Trump family representatives regarding Reuters’ requests for comments. The White House, National Security Agency, and Cybersecurity and Infrastructure Security Agency also did not reply immediately. Similarly, the Chinese Embassy in Washington did not respond, though Beijing usually denies involvement in cyberespionage activities.

China claims discovery of spy gear in territorial waters

China’s Ministry of State Security announced the discovery of foreign spying devices in its waters, including underwater ‘lighthouses’ that could potentially guide foreign submarines. The ministry revealed on its official WeChat account that it had retrieved several types of devices hidden on the ocean floor, gathering real-time data from within China’s claimed territorial waters.

This revelation comes amid rising tensions in the South China Sea, where China and the Philippines dispute territory, increasing the risk of a broader confrontation potentially involving the US. China’s recent military drills around Taiwan have also heightened concerns, as the US and Taiwan have condemned Beijing’s actions.

China claims nearly all of the South China Sea, overlapping areas claimed by other Southeast Asian nations, and has maintained it will not renounce using force over Taiwan. A new phase in the submarine arms race between China and the US and its allies is underway, with Beijing projected to field nuclear-armed submarines by the decade’s end. The ministry affirmed its commitment to defending China’s maritime sovereignty and addressing threats of foreign espionage in its waters.

US finalising rules to curb investment in China’s AI and defence tech

The Biden administration announced on Monday new rules restricting US investments in specific technology sectors in China, including AI, semiconductors, and quantum computing, citing national security concerns. These rules, effective from 2 January, aim to prevent US capital and expertise from aiding China’s development of military and intelligence capabilities. Issued under an executive order from August 2023, the regulations will be managed by the Treasury’s new Office of Global Transactions.

The targeted technologies are considered crucial to future military and cyber defence. Treasury officials note that US investments often include more than money—managerial support, network access, and intellectual expertise—that could benefit Chinese advancements in sensitive sectors. A senior Treasury official, Paul Rosen, emphasised that these restrictions curb potential US involvement in developing cutting-edge technologies for adversarial nations.

The US Commerce Secretary Gina Raimondo has previously highlighted the importance of these measures, viewing them as essential to slowing China’s progress in military technologies. The new regulations allow for investments in publicly traded Chinese securities; however, existing rules still restrict transactions involving certain Chinese firms deemed to support military development.

Additionally, the rules respond to recent criticism from the House Select Committee on China, which has scrutinised American index providers for funnelling US investments into Chinese companies linked to military advancements. With these regulations, the administration underscores its intent to protect US interests by limiting China’s access to critical technology expertise and capital.

US and Nigeria strengthen ties to combat crypto misuse

The United States and Nigeria have launched the Bilateral Liaison Group on Illicit Finance and Cryptocurrencies to counter cybercrime and misuse of digital assets. Led by the US Department of Justice and Nigerian authorities, this new initiative aims to strengthen both countries’ capabilities in investigating and prosecuting cyber and crypto-related financial crimes as digital finance expands globally.

The group’s formation comes soon after the release of Tigran Gambaryan, Binance’s head of financial crime compliance, who was detained in Nigeria since February on money laundering charges. His release due to health concerns follows rising tensions, and this new collaboration may help ease strained relations as both nations work toward secure cyberspace operations.

Aligned with US goals for global cyber enforcement, this liaison group aims to streamline coordination between the two countries’ enforcement bodies. This joint effort underscores the importance of cross-border cooperation to address the unique challenges posed by digital assets in the fight against financial crime.

US Commerce Department IoT panel recommends privacy labels for vehicles

The Commerce Department’s IoT Advisory Board has recommended that car dealers display privacy disclosures on vehicle windshields, urging government agencies and Congress to mandate this requirement. The report, developed with the officials from the National Institute of Standards and Technology (NIST), suggests including easy-to-understand privacy information on vehicle windshields, such as whether vehicles collect personal data and options for universal opt-outs.

This initiative aims to enhance consumer protection amid growing concerns over data privacy in connected cars. The board noted automakers often need to inform consumers about data practices adequately. Despite opposition from the Alliance for Automotive Innovation, the recommendation was adopted after a briefing highlighted the potential benefits of such labelling for consumer awareness.

“So many consumers tell us they had no idea their car is ‘a smartphone on wheels’ that can transmit data to the manufacturer and other companies,” said Amico, who runs Privacy4Cars, a privacy technology company which helps consumers and businesses better understand data privacy concerns related to connected cars. 

The report will be considered by a federal working group tasked with determining whether legislation or executive action is needed to implement the recommendations, including regulating third-party data sharing and simplifying privacy policies. The advisory board emphasised that this initiative could set a global standard for IoT device privacy. A few countries, e.g. Singapore, have created comprehensive standards around consumer Internet of Things devices, such as cybersecurity labelling schemes.