Daily Digest on AI and Emerging Technologies (18 November 2025) – https://pam.int/daily-digest-on-ai-and-emerging-technologies-18-november-2025/

Daily Digest on AI and Emerging Technologies (19 November 2025) – https://pam.int/daily-digest-on-ai-and-emerging-technologies-19-november-2025/

Daily Digest on AI and Emerging Technologies (20 November 2025) – https://pam.int/daily-digest-on-ai-and-emerging-technologies-20-november-2025/

Daily Digest on AI and Emerging Technologies (21 November 2025) – https://pam.int/daily-digest-on-ai-and-emerging-technologies-21-november-2025/

 

Governance

The Promise and Peril of the U.N. Convention Against Cybercrime

(Pavlina Pavlova – Just Security) At the end of October, 72 countries signed the United Nations Convention against Cybercrime in Hanoi, Vietnam. The Convention is the first comprehensive global treaty on this matter, providing states with a range of measures to prevent and combat cybercrime and to strengthen international cooperation in sharing electronic evidence for serious crimes. While many others are expected to join in due course, with 121 U.N. members yet to accede — and the fact that signatories are only legally bound by the treaty once they ratify it — the new U.N. instrument has a long way to go before it achieves universal acceptance. The process for negotiating a U.N. cybercrime treaty was born in controversy. The initial push for the Convention came from Russia, the largest perpetrator of cybercrime, and the resolution tabled in 2019 to launch negotiations received only minority support. The motivation behind the decade-long pursuit was to replace the Budapest Convention as the most recognised international standard and advance a treaty that would better reflect the ideas of state-controlled internet governance. After close to three years of negotiations, an overwhelming number of stakeholders viewed the final document as flawed, due to state overreach married with weak safeguards, and many civil society organizations have called on countries to reject it. Despite these hurdles, the text was adopted by consensus in the Ad Hoc Committee tasked with elaborating the treaty and later confirmed in the U.N. General Assembly (UNGA), in what has been hailed a victory for multilateralism. Thanks to the external voices across civil society, the technology industry, and academia that participated in negotiations, the outcome was a more balanced text compared to the initial Russian proposal. The evolution of the treaty invites the following questions: What happened during negotiations that transformed the text into something that seemingly satisfied almost everyone? And what does that process signify for implementation? – https://www.justsecurity.org/124057/promise-peril-cybercrime-convention/

A Socio-technical approach to AI literacy: A quick guide 

(Ayesha Gulley, Airlie Hilliard – OECD.AI) AI literacy is a crucial cornerstone of organisational AI readiness, focusing on developing the knowledge, skills, and competencies needed to master and critically assess AI technologies. In essence, AI literacy equips individuals and organisations with an effective and ethical approach to AI tools. This includes skills for output evaluation and human oversight, adaptation to the evolving technological landscape, alignment with EU digital priorities, and robust policy-by-design. – https://oecd.ai/en/wonk/socio-technical-approach-ai-literacy

UK unveils major push to drive national AI growth

(DigWatch) A significant wave of public and private investment is set to place AI at the centre of the UK’s growth strategy. AI Growth Zones backed by substantial investment will drive job creation, high-tech infrastructure and local industry development across regions such as South Wales, London and Bristol. – https://dig.watch/updates/uk-unveils-major-push-to-drive-national-ai-growth

AI in healthcare gains regulatory compass from UK experts

(DigWatch) Professor Alastair Denniston has outlined the core principles for regulating AI in healthcare, describing AI as the ‘X-ray moment’ of our time. Like previous innovations such as MRI scanners and antibiotics, AI has the potential to improve diagnosis, treatment and personalised care dramatically. Still, it also requires careful oversight to ensure patient safety. – https://dig.watch/updates/ai-in-healthcare-gains-regulatory-compass-from-uk-experts

EU unveils vision for a modern justice system

(DigWatch) The European Commission has introduced a new Digital Justice Package designed to guide the EU justice systems into a fully digital era. A plan that sets out a long-term strategy to support citizens, businesses and legal professionals with modern tools instead of outdated administrative processes. Central objectives include improved access to information, stronger cross-border cooperation and a faster shift toward AI-supported services. – https://dig.watch/updates/eu-unveils-vision-for-a-modern-justice-system

Geostrategies

Climate tech and AI will shape Europe’s technology future

(DigWatch) Europe faces a pivotal moment in its technology sector, with AI, climate tech and defence set to shape the continent’s future. Sustained investment is essential if Europe wants to remain competitive against the US and China in high-tech industries. Venture capital firm Atomico’s State of European Tech 2025 report shows that AI already attracts the majority of funding, led by companies such as Mistral AI, Lovable, Synthesia and n8n. – https://dig.watch/updates/climate-tech-and-ai-will-shape-europes-technology-future

Low-cost Chinese AI models forge ahead, even in the US, raising the risks of a US AI bubble

(James Kynge – Chatham House) Nvidia’s latest earnings report calmed jittery markets for now. But Chinese AI models are fast gaining a following around the world, underlining concerns over an ‘AI bubble’ centered on high-investment, high-cost US models. –  https://www.chathamhouse.org/2025/11/low-cost-chinese-ai-models-forge-ahead-even-us-raising-risks-us-ai-bubble

Legislation

Pennsylvania Senate passes bill to tackle AI-generated CSAM

(DigWatch) The Pennsylvania Senate has passed Senate Bill 1050, requiring all individuals classified as mandated reporters to notify authorities of any instance of child sexual abuse material (CSAM) they become aware of, including material produced by a minor or generated using artificial intelligence. – https://dig.watch/updates/pennsylvania-senate-passes-bill-to-tackle-ai-generated-csam

DPDP Rules and the Future of Child Data Safety

(Arpan Tulsyan – Observer Research Foundation) Last week, the Ministry of Electronics and Information Technology (MeitY) notified the Digital Personal Data Protection (DPDP) Rules, 2025. These rules have arrived at the moment when children’s digital presence is expanding faster than any regulatory system can keep up. From EdTech platforms and school ERP (Enterprise Resource Planning) systems to gaming apps, social media, and digital toys, children generate enormous volumes of data. Parents often fail to understand the implications, and sometimes do not even know that it exists. Until now, this data has been governed by fragmented guidelines, weak contractual arrangements, and uneven institutional capacity. The formal notification of the DPDP Rules marks a decisive shift, placing schools, colleges, EdTech companies, and education boards squarely within a national compliance framework. Nonetheless, the question remains: how effectively will this law protect children’s data, especially when tested against on-ground practices and awareness? – https://www.orfonline.org/expert-speak/dpdp-rules-and-the-future-of-child-data-safety

DPDP law takes effect as India tightens AI-era data protections

(DigWatch) India has activated new Digital Personal Data Protection rules that sharply restrict how technology firms collect and use personal information. The framework limits data gathering to what is necessary for a declared purpose and requires clear explanations, opt-outs, and breach notifications for Indian users. – https://dig.watch/updates/dpdp-law-takes-effect-as-india-tightens-ai-era-data-protections

US administration pushes back on proposal to restrict Nvidia sales to China

(DigWatch) The White House is urging Congress to reject a bipartisan proposal that would restrict Nvidia from selling advanced AI chips to China and other countries subject to an embargo. The GAIN AI Act would require chipmakers to prioritise US buyers before exporting high-performance hardware. – https://dig.watch/updates/us-administration-pushes-back-on-proposal-to-restrict-nvidia-sales-to-china

Courts and Litigation

The Question of Standing in Leaks of Non-‘Salacious’ Data

(Irene Loewenson – Lawfare) When can people sue companies for failing to keep their personal data safe? In 2021, the Supreme Court held that plaintiffs suing in federal court must point to a common-law analogue for any intangible harms they allege—or else be barred for lack of standing. Since then, circuit courts have diverged on when the harm stemming from data breaches resembles one traditionally recognized under common law. One recurring question is what to do when the leaked information is neutral rather than compromising or salacious. Is the harm of having a driver’s license number wind up in shady corners of the internet close enough to the traditional injury of, say, having an affair splashed across the front page of the newspaper? On Oct. 14, in Holmes v. Elephant Insurance Company, the U.S. Court of Appeals for the Fourth Circuit answered that question affirmatively. Breaking from sister circuits, the court held that plaintiffs whose driver’s license numbers end up on the dark web after a data breach may sue even though the leaked information isn’t “embarrassing or salacious.” The Fourth Circuit’s approach broadens standing, making it easier for people to sue companies when their personal information surfaces online. – https://www.lawfaremedia.org/article/the-question-of-standing-in-leaks-of-non–salacious–data

NSO seeks to overturn WhatsApp case, saying it is ‘catastrophic’ for the spyware maker

(Suzanne Smalley – The Record) The NSO Group on Wednesday filed an appeal aimed at overturning a judge’s ruling that it must stop targeting the WhatsApp platform with its spyware. On October 17, Northern California federal judge Phyllis Hamilton issued the order, determining that NSO improperly leveraged WhatsApp infrastructure to target 1,400 of the Meta-owned messaging platform’s users with its zero-click Pegasus spyware. In a court filing ahead of the ruling, NSO told the judge that blocking it from targeting WhatsApp infrastructure to implant its spyware could “put NSO’s entire enterprise at risk” and “force NSO out of business.” – https://therecord.media/nso-seeks-to-overturn-whatsapp-case

Security and Surveillance

Lessons From the European Airports Ransomware Attack

(Rodrigo Pérez-Alonso – Lawfare) Chaos. Cancellations. Reputational harm. Financial loss. All of these hit Heathrow, Brussels, and Berlin airports in September after a ransomware attack crippled a critical passenger system, Collins Aerospace’s Multi User System Environment (MUSE). The result was a cascade of massive delays, at least 217 canceled flights, thousands of affected passengers, and likely millions of euros in losses for these airports and airlines. The incident demonstrated the catastrophic effects of an attack that disables the weakest link in a supply chain for critical infrastructure such as airports. It also exemplified how ransomware has become a global threat: A single vulnerability in a U.S. company’s software triggered reputational and financial damage for airports spanning three countries, and operational turmoil for airlines and passengers across multiple nations. However, the incident also places a spotlight on key differences in cybersecurity regulation in the United States and Europe. While the European Union and the U.K. have enacted overarching laws and regulations, the U.S. still lags behind, with piecemeal regulations covering different industry sectors and no unified federal framework. Indeed, due to the different regulatory approaches on disclosure of these incidents and protection of personal data, it is difficult to know exactly how the attack is being handled across jurisdictions—demonstrating the dangers of these regulatory discrepancies. – https://www.lawfaremedia.org/article/lessons-from-the-european-airports-ransomware-attack

Hacking spree continues with Mazda, Canon, and NHS added to the list

(Vilius Petkauskas – Cybernews) The Russia-linked Cl0p ransomware cartel claims it has the data of numerous companies, with the UK’s health system NHS, Mazda, Mazda USA, and Canon recently added to the gang’s ever-growing victim list. The companies were posted on Cl0p’s dark web leak site, which it uses to pressure victims into paying ransom. Automotive giant Mazda, the company’s US subsidiary, Mazda USA, and optics industry giant Canon all appeared on the leak site simultaneously. The National Health Service (NHS), the United Kingdom’s publicly funded healthcare system, also appeared on Cl0p’s leak site. We have reached out to potentially affected organizations for comment and will update the article once we receive a reply. – https://cybernews.com/security/hacking-spree-continues-with-mazda-canon-and-nhs-added-to-the-list/

GANA Payment loses $3M in hack as WhatsApp Eternidade Stealer spreads in Brazil

(Linas Kmieliauskas – Cybernews) On Thursday, crypto payment infrastructure developer GANA Payment confirmed it had been attacked. The team claims that its “interaction contract” was targeted, and it, together with an external firm, is investigating the incident. According to blockchain sleuth ZachXBT, GANA lost more than $3 million worth of crypto assets. “The attacker deposited 1140 BNB ($1.04M) to [the Tornado mixer] on BSC and bridged funds to ethereum, where another 346.8 ETH ($1.05M) was deposited to Tornado. 346 ETH ($1.046 million) currently sits dormant on ethereum,” the analyst said. – https://cybernews.com/crypto/gana-payment-loses-3m-hack-whatsapp-eternidade-stealer-spreads-brazil/

North Korea now targeting applicants to major US AI and crypto firms, and there’s a twist

(Gintaras Radauskas – Cybernews) North Korean agents have created a fake job-application platform picking out applicants to major US AI and crypto firms, researchers said in a new report. Pyongyang has been at it for years, of course, but this time, there’s a catch. According to security firm Validin, which discovered the new scheme, North Korean tech workers are now working to gain long-term access to the computers of applicants before they join a company, rather than simply impersonating employees of those firms. In other words, the operation, called “Contagious Interview” by Validin, now focuses on compromising real job-seeking individuals and stealing the know-how for the Kim Jong Un regime. And it’s done with the help of a fake jobs platform. – https://cybernews.com/security/north-korea-fake-jobs-ai-crypto-companies/

Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack

(Pierluigi Paganini – Security Affairs) Data belonging to Italy’s national railway operator Ferrovie dello Stato Italiane (FS) was leaked after a data breach at IT provider Almaviva. FS Italiane Group is Italy’s state-owned railway company, managing passenger and freight transport, infrastructure, and logistics. It operates nationally and internationally, offering high-speed, regional, and freight services. The group includes Trenitalia, Rete Ferroviaria Italiana (RFI), and other subsidiaries, serving millions of customers annually. AlmavivA is an Italian leading IT and digital services provider. Its offers include CRM, outsourcing, and cloud solutions. It has 41,000 employees (7,000 in Italy, 34,000 abroad) and reported €1.411 billion in revenue in 2024. – https://securityaffairs.com/184907/data-breach/massive-data-leak-hits-italian-railway-operator-ferrovie-dello-stato-via-almaviva-hack.html

Matrix Push C2 Uses Browser Notifications for Fileless, Cross-Platform Phishing Attacks

(Ravie Lakshmanan – The Hacker News) Bad actors are leveraging browser notifications as a vector for phishing attacks to distribute malicious links by means of a new command-and-control (C2) platform called Matrix Push C2. “This browser-native, fileless framework leverages push notifications, fake alerts, and link redirects to target victims across operating systems,” Blackfog researcher Brenda Robb said in a Thursday report. In these attacks, prospective targets are tricked into allowing browser notifications through social engineering on malicious or legitimate-but-compromised websites. – https://thehackernews.com/2025/11/matrix-push-c2-uses-browser.html

APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains

(Ravie Lakshmanan – The Hacker News) A China-nexus threat actor known as APT24 has been observed using a previously undocumented malware dubbed BADAUDIO to establish persistent remote access to compromised networks as part of a nearly three-year campaign. “While earlier operations relied on broad strategic web compromises to compromise legitimate websites, APT24 has recently pivoted to using more sophisticated vectors targeting organizations in Taiwan,” Google Threat Intelligence Group (GTIG) researchers Harsh Parashar, Tierra Duncan, and Dan Perez said. “This includes the repeated compromise of a regional digital marketing firm to execute supply chain attacks and the use of targeted phishing campaigns.” – https://thehackernews.com/2025/11/apt24-deploys-badaudio-in-years-long.html

Cybercriminals Exploit Browser Push Notifications to Deliver Malware

(Beth Maundrill – Infosecurity Magazine) Cybercriminals are delivering malware via web browser features using a newly discovered command-and-control (C2) platform dubbed Matrix Push C2. The malicious C2 platform, discovered by BlackFrog, tricks users with fake system notifications, redirecting them to malicious sites, monitoring infected clients in real time, and even scanning for cryptocurrency wallets. In a report published on November 20, BlackFrog outlined how Matrix Push C2 abuses the legitimate web browser push notification system as a C2 channel. – https://dig.watch/updates/eu-unveils-vision-for-a-modern-justice-system

Coordinated sanctions hit Russian bulletproof hosting providers enabling top ransomware Ops

(Pierluigi Paganini – Security Affairs) US, Australia and UK sanctioned two Russian bulletproof hosting providers accused of aiding groups like LockBit, BlackSuit and Play. Coordinated sanctions hit Russia-based provider Media Land, its leaders, and sister firms for supplying bulletproof hosting that enables ransomware and cybercrime. “Today, the Department of the Treasury’s Office of Foreign Assets Control (OFAC), Australia’s Department of Foreign Affairs and Trade, and the United Kingdom’s Foreign Commonwealth and Development Office are announcing coordinated sanctions targeting Media Land, a Russia-based bulletproof hosting (BPH) service provider, for its role in supporting ransomware operations and other forms of cybercrime.” reads the announcement published by OFAC. “BPH service providers sell access to specialized servers and other computer infrastructure specifically designed to evade detection and defy law enforcement efforts to disrupt malicious cyber activities.” – https://securityaffairs.com/184871/cyber-crime/coordinated-sanctions-hit-russian-bulletproof-hosting-providers-enabling-top-ransomware-ops.html

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

(Ravie Lakshmanan – The Hacker News) Oligo Security has warned of ongoing attacks exploiting a two-year-old security flaw in the Ray open-source artificial intelligence (AI) framework to turn infected clusters with NVIDIA GPUs into a self-replicating cryptocurrency mining botnet. The activity, codenamed ShadowRay 2.0, is an evolution of a prior wave that was observed between September 2023 and March 2024. The attack, at its core, exploits a critical missing authentication bug (CVE-2023-48022, CVSS score: 9.8) to take control of susceptible instances and hijack their computing power for illicit cryptocurrency mining using XMRig. The vulnerability has remained unpatched due to a “long-standing design decision” that’s consistent with Ray’s development best practices, which requires it to be run in an isolated network and act upon trusted code. – https://thehackernews.com/2025/11/shadowray-20-exploits-unpatched-ray.html

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

(Ravie Lakshmanan – The Hacker News) Cybersecurity researchers have warned of an actively expanding botnet dubbed Tsundere that’s targeting Windows users. Active since mid-2025, the threat is designed to execute arbitrary JavaScript code retrieved from a command-and-control (C2) server, Kaspersky researcher Lisandro Ubiedo said in an analysis (…). There are currently no details on how the botnet malware is propagated; however, in at least one case, the threat actors behind the operation are said to have leveraged a legitimate Remote Monitoring and Management (RMM) tool as a conduit to download an MSI installer file from a compromised site. – https://thehackernews.com/2025/11/tsundere-botnet-expands-using-game.html

Researchers devised a new enumeration technique that exposed 3.5B WhatsApp profiles

(Pierluigi Paganini – Security Affairs) A team of researchers at the University of Vienna found a WhatsApp flaw that could scrape 3.5 billion accounts. Meta has since patched the vulnerability to block this enumeration technique. Users discover contacts by querying WhatsApp servers with phone numbers, allowing phone number enumeration. Despite standard rate limiting, researchers probed over 100 million numbers per hour without being blocked, revealing the platform’s vulnerability at scale. They discovered that nearly half of the numbers leaked in the 2021 Facebook breach remain active on WhatsApp. “This architecture inherently enables phone number enumeration, as the service must allow legitimate users to query contact availability. While rate limiting is a standard defense against abuse, we revisit the problem and show that WhatsApp remains highly vulnerable to enumeration at scale.” reads the report published by the researchers. “In our study, we were able to probe over a hundred million phone numbers per hour without encountering blocking or effective rate limiting.” – https://securityaffairs.com/184886/mobile-2/researchers-devised-a-new-enumeration-technique-that-exposed-3-5b-whatsapp-profiles.html

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

(The Hacker News) CTM360 has identified a rapidly expanding WhatsApp account-hacking campaign targeting users worldwide via a network of deceptive authentication portals and impersonation pages. The campaign, internally dubbed HackOnChat, abuses WhatsApp’s familiar web interface, using social engineering tactics to trick users into compromising their accounts. Investigators identified thousands of malicious URLs being hosted on inexpensive top-level domains and rapidly generated through modern website-building platforms, allowing attackers to deploy new pages at scale. The campaign’s activity logs show hundreds of incidents in recent weeks, with a noticeable surge across the Middle East and Asia. – https://thehackernews.com/2025/11/ctm360-exposes-global-whatsapp.html

Sturnus: New Android banking trojan targets WhatsApp, Telegram, and Signal

(Pierluigi Paganini – Security Affairs) Sturnus is a new Android banking trojan with full device-takeover abilities. It bypasses encrypted messaging by capturing on-screen content and can steal banking credentials, remotely control the device, and hide fraudulent actions from the user. ThreatFabric analysis shows Sturnus malware is still under development or is currently operating in a limited testing phase. However, the malware already targets financial institutions across Southern and Central Europe, signaling preparation for a broader campaign. The malware is fully functional and surpasses established families in communication protocols and device support. Evidence indicates short, intermittent campaigns focusing on secure messaging apps like WhatsApp, Telegram, and Signal, with region-specific templates. Operators actively refine tools to capture sensitive communications, preparing for more coordinated, large-scale operations. “Sturnus, in addition to banking applications, also monitors the foreground app and automatically activates its UI-tree collection whenever the victim opens encrypted messaging services such as WhatsApp, Signal, or Telegram.” reads the report published by ThreatFabric. – https://securityaffairs.com/184878/cyber-crime/sturnus-new-android-banking-trojan-targets-whatsapp-telegram-and-signal.html

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

(Ravie Lakshmanan – The Hacker News) Cybersecurity researchers have disclosed details of a new Android banking trojan called Sturnus that enables credential theft and full device takeover to conduct financial fraud. “A key differentiator is its ability to bypass encrypted messaging,” ThreatFabric said in a report shared with The Hacker News. “By capturing content directly from the device screen after decryption, Sturnus can monitor communications via WhatsApp, Telegram, and Signal.” – https://thehackernews.com/2025/11/new-sturnus-android-trojan-quietly.html

Cyber-enabled kinetic targeting: Iran-linked actor uses cyber operations to support physical attacks

(Pierluigi Paganini – Security Affairs) Iran-linked threat actors mapped ship Automatic Identification System (AIS) data shortly before an attempted missile strike, showing how Tehran-aligned groups use cyber operations to support and amplify real-world kinetic attacks. The research demonstrates that the thin line between cyber warfare and traditional kinetic operations is rapidly blurring. Amazon’s threat intel teams say nation-state actors are increasingly using cyber operations to support and enhance physical (kinetic) attacks, a trend they call cyber-enabled kinetic targeting. – https://securityaffairs.com/184862/apt/cyber-enabled-kinetic-targeting-iran-linked-actor-uses-cyber-operations-to-support-physical-attacks.html

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

(Ravie Lakshmanan – The Hacker News) Threat actors with ties to Iran engaged in cyber warfare as part of efforts to facilitate and enhance physical, real-world attacks, a trend that Amazon has called cyber-enabled kinetic targeting. The development is a sign that the lines between state-sponsored cyber attacks and kinetic warfare are increasingly blurring, necessitating the need for a new category of warfare, the tech giant’s threat intelligence team said in a report shared with The Hacker News. While traditional cybersecurity frameworks have treated digital and physical threats as separate domains, CJ Moses, CISO of Amazon Integrated Security, said these delineations are artificial and that nation-state threat actors are engaging in cyber reconnaissance activity to enable kinetic targeting. “These aren’t just cyber attacks that happen to cause physical damage; they are coordinated campaigns where digital operations are specifically designed to support physical military objectives,” Moses added. – https://thehackernews.com/2025/11/iran-linked-hackers-mapped-ship-ais.html

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

(Ravie Lakshmanan – The Hacker News) Threat actors are leveraging bogus installers masquerading as popular software to trick users into installing malware as part of a global malvertising campaign dubbed TamperedChef. The end goal of the attacks is to establish persistence and deliver JavaScript malware that facilitates remote access and control, per a new report from Acronis Threat Research Unit (TRU). The campaign, per the Singapore-headquartered company, is still ongoing, with new artifacts being detected and associated infrastructure remaining active. “The operator(s) rely on social engineering by using everyday application names, malvertising, Search Engine Optimization (SEO), and abused digital certificates that aim to increase user trust and evade security detection,” researchers Darrel Virtusio and Jozsef Gegeny said. – https://thehackernews.com/2025/11/tamperedchef-malware-spreads-via-fake.html

Frontiers and Markets

Quantum Computing Takes Center Stage at COP30 With New Sustainability Report

(Chris Coleman – Quantum Insider) COP30, the UN’s annual global climate conference, brought together governments, researchers, and industry to chart the next phase of climate action. Beyond highlighting the magnitude of today’s climate and sustainability challenges, one message stands out: new and emergent technologies will shape how we respond. Quantum computing was noticeably present, not on the periphery, but actively showcased for its growing utility in sustainability applications. – https://thequantuminsider.com/2025/11/21/guest-post-quantum-computing-takes-center-stage-at-cop30-with-new-sustainability-report/

Google Expands AI-Powered Anti-Fraud Tools in India With On-Device Scam Detection and New Protections for Financial Apps

(AI Insider) Google is strengthening India’s digital safety ecosystem with the rollout of on-device scam detection for Pixel 9 devices and the launch of new screen-sharing fraud alerts for major financial apps. The initiative comes as digital fraud surges across India, with government agencies reporting billions of rupees lost to online scams and digital transaction misuse in 2024 and 2025. – https://theaiinsider.tech/2025/11/21/google-expands-ai-powered-anti-fraud-tools-in-india-with-on-device-scam-detection-and-new-protections-for-financial-apps/

Starship Technologies and Uber Eats Launch Autonomous Delivery Partnership

(AI Insider) Starship Technologies and Uber announced a global partnership to deploy autonomous sidewalk delivery robots across the UK in 2025, Europe in 2026, and the U.S. in 2027. Starship’s Level 4 autonomous robots, backed by more than 9 million deliveries and 200 million real-world crossings, will power Uber Eats’ next-generation logistics infrastructure. The collaboration aims to scale profitable, city-wide autonomous delivery, beginning with robot deployments in Leeds, UK, before year-end. – https://theaiinsider.tech/2025/11/21/starship-technologies-and-uber-eats-launch-autonomous-delivery-partnership/

Pibit.AI lands a $7M Series A to Build Trusted AI for Next Generation of Underwriters

(AI Insider) Pibit.AI raised $7 million in Series A funding to accelerate development and adoption of its CURE underwriting platform. The company’s unified system automates submissions, document parsing, research, risk evaluation, and workflow management to improve accuracy, speed, and trust. Customers report faster underwriting cycles, higher premium per underwriter, and stronger loss ratios as Pibit AI expands integrations, data partnerships, and advanced risk models. – https://theaiinsider.tech/2025/11/21/pibit-ai-lands-a-7m-series-a-to-build-trusted-ai-for-next-generation-of-underwriters/

Wavee Ai Secures £1M in Seed Funding to Scale Verified Resident App

(AI Insider) Wavee Ai raised over £1 million in seed funding to accelerate rollout of its free resident engagement app across London, expand into major UK cities, and enter international markets such as Singapore and Australia. The platform enables verified residents to manage parcels, track visitors, and connect with neighbours, while providing local businesses with a subscription portal for click-and-collect, bookings, and promotions. The funding will support rapid onboarding of buildings and business partners, enhance product development and security, and strengthen Wavee Ai’s position as a new global standard for trusted, community-focused PropTech. – https://theaiinsider.tech/2025/11/21/wavee-ai-secures-1m-in-seed-funding-to-scale-verified-resident-app/

Hippocratic AI Raises $126M in Series C at $3.5B Valuation Led by Avenir Growth to Expand Clinically Safe Generative AI Agents Across Healthcare

(AI Insider) Hippocratic AI raised $126 million in Series C funding at a $3.5 billion valuation, bringing total funding to $404 million as it rapidly scales its safety-focused generative AI healthcare agents across six countries. In just 15 months, the company has built over 1,000 clinical use cases and completed 115 million patient interactions with no safety issues, earning partnerships with more than 50 major health systems, payors, and pharma organizations, including Cleveland Clinic, Northwestern Medicine, WellSpan Health, and Cincinnati Children’s. The new capital will accelerate global deployments, expand its Polaris Safety Constellation Architecture, drive product innovation, and support strategic acquisitions as the company advances its mission to deliver scalable, empathetic, clinically safe AI agents for non-diagnostic patient engagement. –  https://theaiinsider.tech/2025/11/21/hippocratic-ai-raises-126m-in-series-c-at-3-5b-valuation-led-by-avenir-growth-to-expand-clinically-safe-generative-ai-agents-across-healthcare/

DOE Researchers Use Quantum Computers to Simulate Particle Physics Beyond Supercomputers

(Quantum Insider) DOE-backed researchers achieved the largest quantum simulation to date, using scalable quantum circuits on IBM’s quantum computers to model particle physics phenomena too complex for classical supercomputers. The team first developed circuits for small systems using classical computation, then scaled them to more than 100 qubits to simulate vacuum properties and hadron pulses. The scalable circuits offer a path to studying matter in extreme conditions, potentially illuminating the matter-antimatter imbalance, supernova nucleosynthesis, and properties of ultra-dense matter. – https://thequantuminsider.com/2025/11/21/doe-quantum-simulations-ibm/

EPB Projects $1 Billion in Quantum Technology Benefits Over Next Decade

(Quantum Insider) EPB’s fiber optic network and automated electric grid have generated $5.3 billion in community benefits since 2010, with projected growth to $10 billion by 2035, including $1.1 billion from quantum technology initiatives. EPB’s investments have supported over 10,400 jobs, contributed $84 million in PILOT payments, and provided high-speed internet access to more than 28,000 students. The network has reduced outages by 59%, saved customers over $945 million in outage-related costs, and offered the highest-bandwidth fiber optic internet at competitive rates. – https://thequantuminsider.com/2025/11/21/epb-community-benefit-quantum/

Harvard Researchers Demonstrate Key Step Toward Scalable Quantum Error Correction

(Quantum Insider) Harvard researchers have demonstrated advanced error-correction techniques in quantum circuits, significantly improving scalability and reliability of qubit systems, according to the Harvard Gazette. The team combined multiple error-correction layers to suppress errors below a critical threshold, enabling qubits to maintain coherence over deeper quantum circuits. The research uses neutral rubidium atoms and adds to ongoing efforts worldwide to develop large-scale, fault-tolerant quantum computers. – https://thequantuminsider.com/2025/11/21/harvard-quantum-error-correction/

SEALSQ and Quobly Announce Collaboration to Advance Secure and Scalable Quantum Technologies

(Quantum Insider) SEALSQ and Quobly have formed a collaboration to explore how secure semiconductor architectures and scalable quantum systems can be integrated for future large-scale quantum computing. The partnership combines SEALSQ’s post-quantum security and Root-of-Trust hardware with Quobly’s CMOS-compatible silicon spin qubit platform to define native quantum-secure system architectures. Both companies aim to strengthen their positions in defense, security, and U.S. strategic markets by aligning quantum processing with quantum-resistant security technologies. – https://thequantuminsider.com/2025/11/21/sealsq-quobly-secure-quantum-collaboration/

Johns Hopkins Team Introduces New Method for Mapping Quantum Noise

(Quantum Insider) Johns Hopkins researchers developed a new framework to more accurately characterize how quantum noise spreads across quantum systems. The method uses root space decomposition to simplify how noise impacts system states, enabling clearer classification of noise types. This insight supports future advances in quantum error correction, hardware design, and noise-aware quantum algorithms. – https://thequantuminsider.com/2025/11/21/johns-hopkins-maps-quantum-noise/

Study Suggests Single Quantum System Could Sense And Communicate at The Same Time

(Quantum Insider) A new arXiv study shows that a single quantum system can send information and measure its environment simultaneously using a method called quantum integrated sensing and communication. The researchers demonstrate a tunable trade-off between communication rate and sensing accuracy, enabled by entanglement and variational training methods. The findings suggest potential applications in quantum networks and integrated quantum sensing systems, though the results are based on simulations and require hardware validation. – https://thequantuminsider.com/2025/11/21/study-suggests-single-quantum-system-could-sense-and-communicate-at-the-same-time/

New AI co-pilot uses CAD software to generate 3D designs

(DigWatch) MIT engineers have developed a novel AI system able to use CAD software in a human-like way, controlling the interface with clicks, drags and menu commands to build 3D models from 2D sketches. The team created a dataset called VideoCAD, comprising more than 41,000 real CAD session videos that explicitly show how users build shapes step-by-step, including mouse movement, keyboard commands and UI interactions. – https://dig.watch/updates/new-ai-co-pilot-uses-cad-software-to-generate-3d-designs

Flexion Raises $50M in Series A Funding to Build the Brain of Humanoid Robots

(AI Insider) Flexion, a Zurich-based robotics startup building an autonomy platform for humanoid robots, raised $50 million in Series A funding, led by DST Global Partners with participation from NVentures, Redalpine, Prosus Ventures and Moonfire, following a $7.35 million seed round. The company said the capital will expand its R&D team, scale compute and robot fleets, establish a U.S. presence and accelerate commercial partnerships with major OEMs as it moves its autonomy stack toward deployment. Flexion is developing an intelligence layer for humanoid systems that integrates language-based task reasoning, a vision-language-action model and transformer-driven whole-body control to reduce reliance on human demonstrations and enable adaptable, general-purpose robotics in real-world industrial environments. – https://theaiinsider.tech/2025/11/20/flexion-raises-50m-in-series-a-funding-to-build-the-brain-of-humanoid-robots/

Popai Health Closes $11M in Funding to Transform Care Coordination with Voice AI

(AI Insider) Popai Health raised $11 million from Team8, NEA, and strategic investors to scale its Voice AI platform, which transforms patient phone conversations into actionable insights for health systems, medical groups, health plans, and ACOs. Its Patient Conversation Intelligence technology captures and analyzes the 65% of patient interactions that occur over the phone, automatically generating compliant documentation and triggering real-time workflows that improve care coordination, close care gaps, and surface rising-risk patients. Already deployed by organizations such as Essen Healthcare and Clover Health, Popai enables proactive population health management by converting millions of daily phone conversations into clinical, operational, and social insights while reducing administrative burden and enhancing care quality. – https://theaiinsider.tech/2025/11/20/popai-health-closes-11m-in-funding-to-transform-care-coordination-with-voice-ai/

TranscendAP Secures Venture Funding to Accelerate AI-Driven AP Automation Growth

(AI Insider) TranscendAP secured new venture funding led by Rittenhouse Ventures and Tech Council Ventures to scale operations, accelerate AI innovation, and expand its AP automation platform, following strong customer adoption across healthcare, manufacturing, and higher education. Its AI-driven system delivers intelligent data capture, workflow automation, and exception handling, reducing manual tasks, improving visibility, and lowering invoice processing costs — often by up to 70% — while strengthening fraud detection. Investors highlighted the company’s strong product-market fit, capital efficiency, and experienced leadership team, positioning TranscendAP to capture significant share in a market where more than 90% of organizations still lack effective AP automation. – https://theaiinsider.tech/2025/11/20/transcendap-secures-venture-funding-to-accelerate-ai-driven-ap-automation-growth/

Warner Music Group Reaches Settlement With Udio and Announces 2026 Launch of Licensed AI Music Platform

(AI Insider) Warner Music Group (WMG) has resolved its copyright infringement dispute with AI music startup Udio and entered into a new licensing agreement to develop a next-generation AI music creation service set for release in 2026. The upcoming platform will use generative AI models trained solely on licensed and authorized music, enabling fans to create remixes, covers, and original songs using the voices and compositions of participating artists and songwriters. – https://theaiinsider.tech/2025/11/20/warner-music-group-reaches-settlement-with-udio-and-announces-2026-launch-of-licensed-ai-music-platform/

NVIDIA Posts Record Q3 Results as AI Demand Sends Data Center Revenue to New Highs

(AI Insider) Nvidia delivered a strong third quarter, reporting $57 billion in revenue and $32 billion in GAAP net income, both sharply exceeding expectations and marking year-over-year increases of 62% and 65%. The performance was driven overwhelmingly by the company’s data center division, which generated a record $51.2 billion, reflecting surging global demand for AI training and inference infrastructure. – https://theaiinsider.tech/2025/11/20/nvidia-posts-record-q3-results-as-ai-demand-sends-data-center-revenue-to-new-highs/

Tali Ventures Leads $6M Series A to Accelerate Bonat’s AI Customer Engagement Platform

(AI Insider)  Tali Ventures, the corporate venture capital arm of stc group, has led a $6 million Series A round for Bonat, the Riyadh-based AI platform transforming customer engagement for retailers and F&B brands across Saudi Arabia. The round also included participation from anb seed Fund, Rua Growth Fund, RZM Investments, and a network of prominent angel investors, reinforcing stc group’s broader commitment to innovation and the Kingdom’s digital transformation. – https://theaiinsider.tech/2025/11/20/tali-ventures-leads-6m-series-a-to-accelerate-bonats-ai-customer-engagement-platform/