Breaking AI & Tech News Analyzed

The Security VulnerabilityTrump Mobile, a phone company launched by Donald Trump's family business, is investigating a potential security flaw on its website that appears to have exposed the personal details of an estimated 27,000 people who sought to buy a gold-coloured smartphone. The company stated it is investigating the issue "with the assistance of independent cybersecurity professionals" in which the full names, addresses and phone numbers of people who filled out preorder forms appeared to be exposed.Based on the available information, Trump Mobile has not identified evidence that its systems, infrastructure, or network were directly compromised. The investigation remains ongoing. At this time, the incident does not appear to involve Trump Mobile payment card information, banking information, Social Security numbers, call records, text messages, or other highly sensitive financial data. The impacted information appears to be limited to certain customer details, including names, email addresses, mailing addresses, order identifiers and mobile phone numbers.The Technical DetailsAn Australian programmer, who has been working in IT for nearly 20 years, incidentally discovered the site's possible security flaws and reported them to Trump Mobile. Jonathan Soma, a programmer and professor at New York's Columbia University, reviewed the code that the Australian had uncovered and copied from the Trump Mobile website. Soma said the website used a common e-commerce model, in which every potential order added another "1" to a list, the total of which had reached 27,224 possible pre-orders on the available information.However, the code reflected the last step before payment, meaning those who didn't proceed with the purchase were also recorded in the data, even those people who have abandoned their carts without paying the deposit. The true number of preorders was likely to be even lower than the initial count.Customer Impact and Company ResponseTrump Mobile has stated that additional safeguards and monitoring measures are now in place, and it is "also evaluating any applicable notification obligations." The company advised customers to remain alert for any suspicious emails, calls or text messages regarding their orders, and emphasized that "Trump Mobile will not ask customers to provide payment information, passwords, or other sensitive information through unsolicited communications."Context of the Trump Mobile LaunchThe discovery coincided with Trump Mobile beginning to distribute its bespoke T1 smartphones after an almost 10-month delay and an about-face on the company's initial promise to manufacture the phones in the US. The Trump Mobile website now says the phones are "designed with American values in mind." Last week, the company's chief executive, Pat O'Brien, said the first T1 phones were assembled in the US and, moving forward, would use components "primarily manufactured" locally.O'Brien would not confirm how many preorders there had been and told USA Today that Trump Mobile was "incredibly pleased" with the interest in its products. He said the T1 phones were starting to be shipped to customers.

The Ransomware Attack on Foxconn Electronics manufacturing giant Foxconn, which makes devices and components for Apple, Google, Nvidia, and Sony, among other tech giants, confirmed on Monday that it was hit by a cyberattack that may have affected some of its factories. Details of the Cyberattack In a statement sent to media outlets, Foxconn said that the cyberattack affected facilities in North America and that “the affected factories are currently resuming normal production.” The Hackers' Claim The ransomware gang Nitrogen claimed responsibility for breaching Foxconn in a statement on its dark web leak site, where the group publicizes its victims in an attempt to extort them. Typically, if the victim doesn’t pay up, the hacking group publishes the stolen data. The Stolen Data The hackers claim to have stolen over 11 million files, including confidential information from Foxconn customers, including Apple, Dell, Google, Intel, Nvidia, and others. As proof, the hackers published several images of what appear to be product schematics, guidelines, and bank statements. The Impact of the Attack Nitrogen is a double-extortion ransomware group. That means the hackers encrypt files, making them inaccessible to the victims, but they also steal them first, which allows them to threaten to leak the stolen data. This strategy effectively gives Nitrogen two avenues to monetize their crimes. The Future Outlook Foxconn did not immediately respond to a series of specific questions about the attack. The incident highlights the growing threat of ransomware attacks on major corporations and the need for robust cybersecurity measures to protect sensitive data.

Canvas Reaches Agreement with Hackers to Purge Stolen Data Instructure, the parent company of the Canvas learning platform, announced that it has “reached an agreement with the unauthorized actor involved in this incident” to delete the data stolen in last week’s cyberattack that disrupted finals for students worldwide. Scope of the Breach: 9,000 Schools and 275 Million Records Affected 9,000 schools worldwide were threatened with data exposure. 275 million individuals’ personal information, including student IDs, email addresses, names and messages, were compromised. The hacking group ShinyHunters demanded a ransom by 6 May, later extending the deadline. Implications for U.S. Higher‑Education Operations and Cyber‑Risk Management The breach forced many U.S. colleges to lock out users, delay final exams and temporarily take Canvas offline, highlighting the platform’s central role in grading, coursework distribution and communication. Instructure’s chief information security officer Steve Proud confirmed that passwords, dates of birth, government IDs and financial data were not found in the stolen set, but the incident raised concerns about potential future publication of the data. What This Means for Future EdTech Security Strategies Instructure plans to work with “expert vendors” for forensic analysis, system hardening and a comprehensive review of the data involved. The company also received “digital confirmation” in the form of “shred logs” that the hackers destroyed remaining copies, though it acknowledged no absolute certainty of total erasure. Analysts suggest that the episode will push educational institutions to reassess vendor security contracts, invest in multi‑factor authentication and develop incident‑response playbooks tailored to large‑scale data breaches.

The Emergence of Mythos AI Anthropic's recent announcement about its new model, Claude Mythos Preview, has raised both excitement and concern. The model is remarkably effective at finding security vulnerabilities in software, but Anthropic has decided not to release it to the general public. Instead, it will only be available to a select group of companies to scan and fix their own software. The Capabilities of Mythos AI While Anthropic's model is impressive, it's not unique. Other models, such as OpenAI's GPT-5.5, have comparable capabilities. The UK's AI Security Institute found that GPT-5.5 can also find software vulnerabilities. Additionally, smaller and cheaper models have been able to reproduce Anthropic's published results. The Financial Implications of Mythos AI The high cost of running Mythos AI is a significant factor in Anthropic's decision not to release it publicly. The company's valuation can be boosted by hinting at the model's capabilities without actually proving them. This strategy allows Anthropic to maintain a competitive edge while limiting access to the model. The Impact on Cybersecurity The emergence of models like Mythos AI has significant implications for cybersecurity. These models can be used by both attackers and defenders to find and exploit vulnerabilities in software. This could lead to a more dangerous and volatile world, with increased risks of cyber attacks and data breaches. The Future of AI and Cybersecurity As AI models continue to improve, we can expect to see more frequent software updates and a greater emphasis on cybersecurity. However, the long-term implications of these models are more complex. They may be used to find loopholes in complex systems, such as tax codes and regulatory systems, which could have far-reaching consequences for society. The Broader Implications of Mythos AI The capabilities of Mythos AI have broader implications beyond cybersecurity. These models can be used to analyze complex systems and find vulnerabilities, which could be applied to areas such as tax law and environmental regulations. This raises important questions about the potential misuse of these models and the need for careful consideration of their development and deployment.

The UK Biobank Data Breach: A Minor Setback One thing Britain is exceptionally good at is collecting and using health data for research, studying cohorts of people over many decades. A shudder of alarm rippled through the research world at the news this week that UK Biobank’s data had been put up for sale on China’s Alibaba site, with the science minister, Patrick Vallance, saying that more attempts to sell the data in China were expected. Understanding the Breach and Its Impact Biobank dashed to reassure its 500,000 members, and as a longtime volunteer I received a message not only explaining what had happened but listing some of the invaluable research findings and remedies that had already sprung from our data. Remarkably, a representative for Biobank told me that only about 100 people inquired about withdrawing, and after each was spoken to, only 50 actually backed out – pretty impressive. Prof Sir Rory Collins, Biobank’s chief executive, says he will personally speak to any anxious participant. The Value of Biobank Data The list of good done using Biobank data includes a blood test revealing motor neurone disease years before symptoms arise, a single gene behind almost all Alzheimer’s cases and a score to decide which overweight people have most risk factors and should be first for weight-reduction drugs. Challenges and Future Directions Longitudinal studies have been a research jewel, allowing projects such as studying children born in the same month who are then followed throughout their lives. In the UK we have followed groups of people from 1946, 1958, 1970, 1989-90 and 2000-2002 and there is now a new study recruiting 30,000 babies this year. The organisation Use My Data, which founded by cancer patients grateful for research that saved their lives, campaigns to get people to join research projects, helping researchers devise trustworthy transparent data systems. The Future of Health Data Research Summon up your public spirit. A population-wide study recruiting now is Our Future Health, seeking 5 million volunteers, so sign up here. I’ve already done so – it’s simple, just a blood sample and a questionnaire gets you a £10 token. Everyone benefits.

Executive Summary: Delve’s Compliance Woes Resurface with Vercel BreachDelve, the embattled compliance startup, is again in the spotlight after Context AI—a former client—was identified as the vector behind a data breach at hosting giant Vercel. The incident adds to a string of controversies that have already seen whistleblower accusations, alleged plagiarism, and the loss of key customers.Context AI’s Vercel Breach Traced to Delve‑Certified AppTechCrunch confirmed that Delve performed the security certification for Context AI. An employee at Vercel downloaded a Context AI‑built app, linked it to Vercel’s corporate Google account, and inadvertently granted attackers access to internal systems.Hackers accessed some customer data after exploiting the compromised Google credentials.Context AI has since dropped Delve and is pursuing re‑certification with Vanta and Insight Assurance.Numbers That Reveal the Scale of the ControversyMore than 20 Delve employees attended an off‑site meeting in Hawaii between April 15 and April 19, as revealed by whistleblower DeepDelver.At least three former Delve customers—Context AI, LiteLLM, and Lovable—have publicly disclosed security incidents linked to Delve‑certified products.Y Combinator, Delve’s accelerator, officially severed ties in March 2026.Why the Incident Shakes Confidence in Third‑Party CertificationsThe chain of events underscores a critical flaw: certifications alone do not guarantee security. When a certified product becomes the attack surface, the credibility of the certifying body is called into question. Y Combinator's decision to cut ties, along with multiple clients abandoning Delve, signals a broader industry mistrust that could accelerate a shift toward more transparent, open‑source audit frameworks.What’s Next for Delve and Its Former Clients?Analysts predict several near‑term developments:Delve may face intensified legal scrutiny and potential regulatory action, especially if further whistleblower evidence emerges.Clients like Context AI and LiteLLM are likely to complete re‑certifications with rivals such as Vanta, bolstering their security postures.The compliance market could see a surge in demand for independent, community‑driven audits, reducing reliance on single‑vendor certifiers.Until Delve can demonstrably address the allegations and restore trust, its future as a viable compliance provider remains uncertain.

Lead: Immediate Fallout for Hundreds of Thousands of HolidaymakersHolidaymakers across Europe are scrambling to replace passports after Eurail’s Interrail platform was breached and a sample dataset was posted on the dark web. Authorities in the UK and Denmark have instructed affected travellers to cancel their existing passports, incurring fees of up to £200 per replacement. Massive Eurail Data Breach Exposes 300,000 Traveller RecordsIn December, hackers accessed personal data—including passport numbers, names, phone numbers, email addresses, home addresses and dates of birth—of more than 300,000 Eurail customers. This week Eurail confirmed that the stolen data is being offered for sale on the dark web and a sample was shared on Telegram. Number of records compromised: >300,000 Data types leaked: passport numbers, contact details, DOB, home address Platform affected: Eurail’s Rail Planner app and Interrail booking system Financial Toll: Passport Replacement Costs and Potential FinesCustomers are facing mandatory passport cancellations. The UK Home Office requires a full £102 fee for a replacement, while a Danish traveller expects a cost exceeding £200. Beyond individual expenses, Eurail could face GDPR‑driven fines under article 82, which allow penalties of up to 4% of annual global turnover. UK replacement fee: £102 Estimated Danish replacement fee: > £200 Potential GDPR fine ceiling: 4% of global revenue Broader Implications for Travel Industry Data SecurityThe breach underscores the vulnerability of travel‑service providers that store sensitive identity documents. With passports now a target for fraud, regulators may tighten oversight, and companies will likely need to invest heavily in encryption, multi‑factor authentication, and rapid breach‑notification protocols. What’s Next: Regulatory Pressure and Customer Trust RecoveryEurail has pledged to keep customers vigilant, urging password changes for the Rail Planner app and monitoring for suspicious communications. Analysts predict that, within the next 12‑18 months, the EU will introduce stricter data‑handling standards for cross‑border travel services, and affected travellers may seek collective compensation through class‑action lawsuits.

The Australian Privacy Commissioner has issued a landmark ruling against 2Apply, a dominant player in Australia's RentTech sector, finding that the platform collected excessive personal information from millions of applicants. Key Developments First-of-its-kind determination: Privacy Commissioner Carly Kind ruled that 2Apply, operated by InspectRealEstate, collected data in an unfair manner. Excessive data points: The investigation revealed the collection of unnecessary details such as gender, dependent information, bankruptcy status, retirement status, and citizenship details. Manipulative tactics: The platform utilized "confirmshaming," using guilt-inducing language to pressure users into providing more data than required. Market scale: With over 8.5 million applications processed, this ruling impacts a significant portion of the Australian rental market. Data & Market Impact The ruling highlights the sheer volume of data being harvested in the housing market. The Australian Housing and Urban Research Institute (AHURI) identified 57 different rent platforms operating in the country. By hoarding sensitive data—ranging from financial history to marital status—platforms like 2Apply create massive security vulnerabilities. The Commissioner noted that the over-collection of data increases the risk of data breaches, potentially exposing millions of rental documents to public access. Why This Matters This decision is critical because it addresses the intersection of the housing crisis and digital privacy. In a market characterized by a shortage of rental properties and intense competition, renters are forced into a vulnerable position where they feel compelled to trade away their privacy to secure a roof over their heads. The ruling validates the concerns of digital rights advocates who argue that the power imbalance in the rental market is being weaponized by intermediaries. Expert Insight Privacy Commissioner Carly Kind emphasized the inherent power imbalance in the rental market. "There is an inherent and significant power imbalance in the rental property market which favours real estate agents, property managers and landlords," she stated. This imbalance is exacerbated by the scarcity of housing, making tenants desperate for any advantage. Furthermore, experts like Samantha Floreani point out that the data collected often has no bearing on a tenant's ability to pay rent or maintain a property, suggesting that data hoarding is often a profit-driven or lazy practice rather than a necessity. What Happens Next The ruling is expected to trigger a sector-wide overhaul. While the decision applies specifically to 2Apply, the Commissioner has indicated that other RentTech providers are likely to adapt their practices to avoid similar penalties. This could lead to a significant reduction in the amount of personal data collected by rental platforms, potentially setting a global standard for how housing applications handle user privacy. Real estate peak bodies have already been briefed, suggesting a coordinated effort to clean up the industry's data practices.

Rockstar Games, the renowned studio behind the Grand Theft Auto series, has fallen victim to a cyberattack by the hacker group ShinyHunters. The group is demanding a ransom in exchange for not releasing stolen company data, including potentially sensitive information about the highly anticipated Grand Theft Auto VI.The attack, which was first reported on April 13, 2026, involves ShinyHunters threatening to leak data stolen from Rockstar Games' servers operated by a third-party vendor. The group initially set a deadline of April 14, 2026, for the company to enter negotiations.In a chilling message, ShinyHunters warned Rockstar: “Rockstar Games. Your … data was compromised … Pay or leak.” The group has a history of targeting major companies, including Microsoft, Cisco, and Ticketmaster.Rockstar Games has downplayed the impact of the hack, stating that only a “limited amount of non-material company information” was accessed and that there was no impact on players. However, given the high stakes surrounding Grand Theft Auto VI, which has been in development for nearly a decade and is expected to be one of the biggest releases in gaming history, any breach is a serious concern.The ShinyHunters group is linked to The Com, a loose network of cybercriminals, primarily English-speaking individuals aged 16 to 25. This group has been involved in previous high-profile hacks, including the Pornhub breach last year.This incident follows a previous major breach in 2022 when a teenager from the Lapsus$ hacking collective leaked 90 minutes of Grand Theft Auto VI gameplay footage. The hacker, Arion Kurtaj, was sentenced to an indefinite hospital order in 2023. Rockstar reportedly spent $5 million and thousands of hours recovering from that incident.The development costs for Grand Theft Auto VI are estimated to be close to $2 billion, and the game’s tight secrecy makes any data breach particularly damaging. Originally slated for Autumn 2025, the game has been delayed to November 19, 2026.