Cybersecurity Institute News Roundup 15 July 2024

Welcome to this week’s Cybersecurity Institute News Roundup, a weekly overview of the some of the most interesting news and articles that have caught our attention recently from across the cybersecurity industry. In this week’s roundup covers how Apple opening up its mobile wallet technology to EU rivals, look into the OpenAI secrets stolen in a 2023 hack, how the Evolve breach highlights the need for fintech community to adopt Zero Trust, ask if AI and net zero emission targets at odds, and delve into how the SCOTUS Chevron reversal threatens digital security regulatory efforts.

Kicking off, Apple has agreed to open up its Near Field Communication (NFC) technology to rival digital wallet providers operating in Europe for 10 years effectively closing out the EU Apple Pay antitrust action. On a related note, both Apple and Microsoft are stepping back from the OpenAI board in an effort to avoid more regulatory scrutiny and antitrust allegations around the globe:

https://www.pymnts.com/apple/2024/apple-opens-payments-tech-to-avoid-eu-fine

The New York Times reports that hackers compromised an internal OpenAI online forum in 2023 to learn details about the company’s AI technologies. While apparently not a nation state attacker, this breach has intensified calls on OpenAI to increase its focus on security especially within the context of national security:

https://www.techrepublic.com/article/openai-hacked-internal-communications/e

The recent Evolve breach and the associated strain it placed on the company’s partner network - including Affirm, Stripe and VISA - is a wakeup call for the fintech community to adopt Zero Trust as a framework for minimizing the impact of these types of events:

https://venturebeat.com/ai/lockbits-latest-attack-shows-why-fintech-needs-more-zero-trust/

The higher compute requirement for AI systems has meant that Google reports its AI investments have driven close to a 50% increase in the company’s greenhouse gas emissions over the past four years, making its 2030 net zero target all the more challenging. In a bit of a chicken and egg scenario, the silver lining is the potential for AI to address climate change, which the Boston Consulting Group has quantified as a global emissions reduction of between and five and 10%:

https://www.cdomagazine.tech/aiml/ai-drives-up-googles-carbon-emissions-by-almost-50

?And finally, the recent US Supreme Court reversal of Chevron which had previously allowed federal agencies to reasonably interpret ambiguous statutes and enforce standards is a blow to digital security regulatory efforts. Among the regulation this decision could jeopardize are the new SEC Cybersecurity Disclosure Rules, the cyber incident reporting requirements for financial institutions (Gramm-Leach-Bliley Act), and even CISA’s proposed rule to implement cyber incident reporting for critical infrastructure.

https://www.govinfosecurity.com/experts-warn-cyber-regulatory-chaos-post-chevron-overturn-a-25675

Be sure to share your thoughts on these stories in the comments and let us know what articles have caught your eye recently?