## Short Segments General Motors is rolling out Google Gemini to four million vehicles, marking one of the largest in-car AI deployments yet. Also today, Colorado's attempt to repeal its right-to-repair law has failed, preserving consumer repair rights. Cognizant is acquiring AI infrastructure specialist Astreya for $600 million, expanding its AI capabilities. And coming up, we'll dive into why recent supply-chain attacks have targeted security firms Checkmarx and Bitwarden. General Motors is integrating Google Gemini into four million vehicles, a significant expansion of in-car AI capabilities. This over-the-air update replaces Google Assistant in model year 2022 and newer Cadillac, Chevrolet, Buick, and GMC vehicles. Gemini is designed to offer more conversational interactions, allowing drivers to speak naturally without memorizing specific commands. This deployment comes amid GM's data-sharing controversy and a looming FTC consent order, highlighting the ongoing tension between technological advancement and privacy concerns. For GM, this move represents a strategic upgrade, enhancing the user experience and potentially setting a new standard for in-car AI systems. As the automotive industry increasingly integrates AI, the balance between innovation and consumer privacy will remain a critical issue. Colorado's attempt to repeal its right-to-repair law has failed, maintaining consumer repair rights. The proposed bill, SB26-090, sought to exempt "critical infrastructure" from repair protections, a term critics argued was too broad and could undermine the 2024 Consumer Right to Repair Digital Electronic Equipment law. This law, effective since January 2026, ensures access to tools and documentation needed to repair digital electronics. The bill passed the Colorado Senate but was ultimately defeated in the House's State, Civic, Military, and Veterans Affairs Committee by a 7-to-4 vote. This outcome is seen as a victory for right-to-repair advocates and a setback for tech companies lobbying for exemptions. The decision underscores the ongoing debate over consumer rights and corporate control in the tech industry. Cognizant is set to acquire AI infrastructure specialist Astreya for $600 million, enhancing its AI capabilities. This acquisition marks Cognizant's fourth major purchase in 18 months, aimed at strengthening its AI-first managed services. Astreya, based in San Jose, specializes in designing, building, and running the physical data center infrastructure essential for enterprise AI operations. By integrating Astreya's expertise, Cognizant aims to fill a critical gap in its AI builder strategy, expanding its ability to support mission-critical operations and compliance-ready delivery. This move reflects the growing importance of robust AI infrastructure as businesses increasingly rely on AI technologies to drive innovation and efficiency. As the demand for AI solutions continues to rise, strategic acquisitions like this one are likely to shape the competitive landscape in the tech industry. EU and Parliament fail to agree on AI Act changes after 12 hours of talks, pushing the deal to next month. The negotiations exposed deep divisions over whether high-risk AI systems embedded in consumer products should be exempt from the world's strictest AI rules. The talks, which ran for about 12 hours, ended without an agreement, with machinery and medical devices as the main sticking points. Without a deal, the August 2 enforcement date for high-risk AI systems applies as written, potentially impacting a wide range of industries. The failure to reach an agreement highlights the challenges of balancing innovation with regulation in the rapidly evolving AI landscape. As discussions resume next month, stakeholders will be watching closely to see how these regulations will shape the future of AI in Europe. ## Feature Story Recent supply-chain attacks have targeted security firms Checkmarx and Bitwarden, raising concerns about the vulnerability of security tools themselves. Over the past six weeks, Checkmarx has faced multiple attacks, including a ransomware incident and a supply-chain breach involving the Trivy vulnerability scanner. The attackers initially compromised Trivy's GitHub account, using it to distribute malware that harvested credentials from infected machines. Subsequently, Checkmarx's own GitHub account was breached, leading to the distribution of malware to its users. These incidents highlight a troubling trend where security tools become both targets and vectors for attacks. Bitwarden, a popular open-source password manager, was also compromised as part of this campaign, with malicious code injected into its CLI environment. Researchers have linked these attacks to a coordinated effort, potentially by a single threat actor, using a shared command-and-control domain. The breaches underscore the importance of securing the supply chain, especially for tools that are integral to cybersecurity ...
Mehr anzeigen
Weniger anzeigen
May 1 20265 Min.