DataBreachToday.com

Proposals Calls for AI Growth Zones and National Data Library
British Prime Minister Keir Starmer unveiled a plan for converting the United Kingdom into an artificial intelligence "world leader," allowing it to shape the next phase of the "AI revolution." Key recommendations include creating multiple AI growth zones and a national data library.

Mitigating Cybersecurity, Privacy Risks for New Class of Autonomous Agents
Many organizations are looking to artificial intelligence agents to autonomously perform tasks that surpass traditional automation. Tech firms are rolling out agentic AI tools that can handle customer-facing interactions, IT operations and a variety of other processes without human intervention, but experts are cautioning security teams to watch for cyber and privacy risks.

Experts Weigh the Pros and Cons of Work Culture and Merging AML and Fraud Teams
A recent report found that more than 57,000 Americans fall victim to scams every day. Financial fraud is rising globally. In response, the National Automated Clearinghouse Association is pushing for real-time fraud monitoring by 2026, requiring closer collaboration between fraud and AML teams.

Alterya's AI-Powered Data Will Combat Scams Across Traditional Financial Ecosystems
Alterya's AI agents now power Chainalysis' fraud prevention, integrating off-chain data sources such as Venmo and Zelle with blockchain analytics. This acquisition marks a significant step in detecting and stopping scams earlier in the fraud cycle, said Chainalysis CEO Jonathan Levin.

New Export Rules Limit AI Chip Access Globally, Sparking Industry Criticism
U.S. export controls slated for publication Monday aim to block foreign adversaries from accessing American advanced computing chips and blueprints for machine learning models. Nvidia and industry leaders have criticized the policy, warning it may harm innovation.

Guardrails Bypassed on Azure OpenAI to Generate 'Thousands of Harmful Images'
Microsoft filed a lawsuit targeting a cybercrime service used to generate "thousands of harmful images" by subverting the guardrails built into its Azure generative artificial intelligence tools. The company said attackers built a tool that reverse-engineered the guardrails in its AI platform.

Days Are Dwindling, But Biden White House Unveils New AI Roadmap for HHS
With 10 days left in office, the Biden administration released an artificial intelligence strategic plan for the U.S. Department of Health and Human Service. HHS called the plan a "comprehensive roadmap" outlining the department’s "commitment to trustworthy, ethical and equitable AI use.

Nvidia, Semiconductor Trade Group Push Back Against Reported Chip Restrictions
The White House’s reported final push to impose tighter restrictions on global semiconductor exports, including artificial intelligence chips critical for data centers, has drawn strong criticism from Nvidia and the semiconductor industry in the last days of the administration.

Also: Cybersecurity Tech Leader Amit Yoran’s Life, Leadership and Legacy
In this week's update, ISMG editors discussed the escalating geopolitical cyberthreats expected in 2025, including advanced and persistent campaigns linked to Chinese actors. Panelists also paid tribute to Amit Yoran, one of the cybersecurity industry's most influential leaders.

Cyberespionage Campaign Reached Treasury Office that Reviews Foreign Investment
Chinese hackers reportedly breached a U.S. government office responsible for reviewing foreign investments for national security threats as part of a cyberespionage campaign targeting the Department of Treasury. Hackers gained access to the Committee on Foreign Investment in the U.S.

Cybercrime History Teaches That Paying a Ransom for Data Deletion Is Foolish
Data breach victim PowerSchool, maker of a widely used K-12 student information system platform, has been attempting to assure schools, and parents and guardians, by saying its attacker has promised to delete the stolen data. What's the old saying about those who fail to learn from history?

Many important efforts by the Cybersecurity Infrastructure and Security Agency to help the healthcare sector and other critical infrastructure sectors bolster their cybersecurity are likely to continue under the incoming Trump administration, predicted CISA Deputy Director Nitin Natarajan.

Firm Folds AI Studio, Gemini API Into DeepMind; Sets up World Model Team
Google is restructuring its artificial intelligence teams and forming a new division under its DeepMind unit. Both the AI Studio team and the Gemini API team will now be run under DeepMind, a shift Google says will make DeepMind's work more accessible to the public.

Google Mandiant's Jamie Collier on the Biggest Cloud Security Challenges
To combat AI threats in 2025, security teams are set to enter the second phase of AI innovation in security by deploying semi-autonomous operations such as alert parsing, creation of high-priority item lists and risk remediation, said Jamie Collier, senior threat intelligence advisor at Mandiant.

Blender and Sinbad Were Favorites of Ransomware and North Korean Hackers
Three Russian nationals behind cryptocurrency mixers favored by ransomware hackers and North Korean crypto thieves face criminal charges in U.S. federal court: Roman Vitalyevich Ostapenko, 55, Alexander Evgenievich Oleynik, 44, and Anton Vyachlavovich Tarasov, 32.

USR Holdings Lost Electronic PHI for Nearly 3,000 Patients in Breach
A Florida-based behavioral health holding company has paid federal regulators a $337,750 HIPAA settlement for a 2018 incident involving the deletion of electronic protected health information pertaining to nearly 3,000 patients. How should other entities avoid these data loss situations?

Cado Security Deal Brings Enhanced Forensics, Automation and AI-Powered Analytics
By acquiring Cado Security, Darktrace strengthens its ability to secure multi-cloud environments. The transaction brings together Cado's forensic capabilities with Darktrace's AI analytics to deliver comprehensive threat detection and response to organizations in regulated industries.

Officials Worry Trump's Cybersecurity Agenda Could Scrap Biden's Final Cyber Orders
An executive order set to be published by the Biden administration in its waning days could offer the next White House a blueprint to counter Chinese cyberattacks, but experts fear its timing - so close to the transition of power - could make it practically dead on arrival.