Oxford University recently disclosed that CareerConnect's third-party provider, GTI, informed Oxford on May 28 that an unauthorized party had gained access to the platform. According to the notice, the attacker was able to obtain users' first names, last names, and email addresses. For users who do not access the platform through Single Sign-On, encrypted passwords were also exposed.
The modern AI industry has become remarkably good at directing attention toward intelligence while keeping the infrastructure that makes that intelligence possible largely out of sight. Public discussion revolves around what the technology can do. We debate whether it will transform education, accelerate scientific discovery, replace jobs, or reshape entire industries. Investors discuss model performance. Governments debate regulation. Companies race to announce new capabilities.
Last week I argued that much of what is being marketed as agentic AI in GRC is not actually agentic. The market response was interesting because very few people challenged the core premise. Most practitioners already sense that something is off. They sit through the demonstrations and hear the language. They watch the AI summarize documents, answer questions, generate narratives, and produce recommendations. Then they leave wondering whether they just witnessed the future of GRC or a very polished presentation wrapped around capabilities that have existed in various forms for years.
For nearly six years, subscribers of Portugal's largest pay-TV providers who wanted to watch recorded television content encountered the same reality. Advertising appeared in those recordings regardless of which major operator they used. According to Portugal's Competition Authority, that was not a coincidence.
According to the Dutch Data Protection Authority (AP), more than 13,500 complaints and tips regarding possible privacy violations were submitted in 2025, a 75 percent increase from the previous year. The figures were published Monday in the regulator's 2025 Complaints Report.
More than 80% of the code merged into Anthropic's production codebase is now authored by Claude. The statistic appears almost casually in a lengthy report published this week by the Anthropic Institute. It arrives alongside benchmark results, productivity measurements, engineering data, and speculation about recursive self-improvement. Yet it is arguably the most important number in the document because it describes something that has already happened rather than something that might happen next.
Pasadena-based Western Asset Management has agreed to pay a $100 million civil penalty to settle Securities and Exchange Commission charges that it failed to detect and prevent an alleged cherry-picking scheme carried out by its former co-chief investment officer.