EU Commission invites feedback to clarify rules on general-purpose AI (GPAI) in a consultation aimed at shaping comprehensive guidelines to enhance understanding of GPAI concepts and compliance processes ahead of August 2025. Stakeholders can provide input until May 22, 2025.
CISOs must prepare for the rise of agentic AI, marking a significant evolution from previous AI models. While security copilots enhanced workflows, agentic AI introduces autonomy, enabling complex tasks and real-time threat responses. It poses both opportunities—like improving SOC efficiency and automating help desk operations—and challenges, including governance and trust issues. Although promising, widespread adoption of agentic AI is cautious, with many security leaders highlighting that it currently struggles to outperform traditional solutions. The technology's potential remains significant as it develops.
The European Commission's guidelines for the AI Act mandate transparency in training data for general-purpose AI models, requiring public summaries detailing the data used. This has sparked debate over what constitutes “sufficiently detailed” information, balancing rights holders' needs for access against providers' interests in protecting strategic assets. A template to aid in compliance was released in January 2025, structured into sections covering model details, data sources, and processing aspects, with final guidelines expected by mid-2025. Legal disputes will ultimately shape the regulation's implementation and future AI standards globally.
EU bans AI assistants in online meetings due to security concerns. The rule was made during a recent European Commission presentation, marking the first official ban on AI agents, which automate tasks during virtual conferences. Potential risks arise from AI agents' unpredictable behavior and user awareness issues, leading to heightened caution in their deployment among tech companies.
https://www.techrepublic.com/article/news-eu-bans-ai-assistants-virtual-meetings/
OpenAI urges the EU to simplify AI regulations to enhance innovation and competitiveness, warning complexity may drive investment to non-democratic regions. They propose a unified pro-growth strategy, tripling computing capacity, and training 100 million Europeans in AI by 2026. OpenAI advocates for synergy between regulations and growth initiatives to ensure EU leadership in AI, emphasizing the need for urgent action against competing autocratic investments while also promoting responsible AI development aligned with European values.
EU AI Act Technical Standards Delayed: The EU's AI Code of Practice drafting has been delayed due to alignment issues with copyright law and risk assessments. The final draft's delivery has been postponed to May, while technical standards may extend into 2026, impacting compliance timelines. National regulators must be established by August 2026.
https://www.pymnts.com/cpi-posts/eu-ai-act-technical-standards-delayed-until-next-year/
CIOs are shifting IT priorities to prioritize AI investments, which have tripled in budget allocation this year. This shift is causing delays in other important projects, including legacy system updates and emerging tech initiatives. While AI spending is seen as essential, it risks neglecting foundational investments like data and architecture modernization, potentially hindering future innovation and competitiveness. Organizations must balance immediate AI pursuits with long-term strategic needs to avoid costly oversights.
The EU AI Act regulates AI in the workplace to protect workers' rights, prohibiting high-risk practices like biometric categorization and emotion recognition, with exceptions. Employers must ensure worker consultation before deploying AI systems, but loopholes exist in obligations, especially for private sector employers. High-risk systems are overseen with specific rights for employees, including the right to explanations and the ability to lodge complaints. The Act emphasizes transparency but has limited mechanisms for enforcement, highlighting the need for stronger regulations to protect workers in AI settings.
CISOs are increasingly adopting AI, automation, and Zero Trust to combat complex cyber threats and outdated security models. AI enhances threat detection by analyzing data quickly, while automation addresses alert overload, allowing faster incident response. Zero Trust reinforces security by continuously validating access based on user behavior. Together, these technologies create a robust, adaptive defense system, though challenges include outdated infrastructure, employee resistance, cost, and integration complexity. Embracing these technologies is essential for effective cybersecurity in a rapidly evolving threat landscape.
https://cybersecuritynews.com/why-cisos-are-betting-big-on-ai-automation-zero-trust/
