In an age where mobile apps dominate everything from banking to dating, the expectation is simple: what happens in the app, stays in the app. But for millions of users, that assumption could be dangerously wrong.

Recent findings have highlighted a growing concern in the world of mobile security: in-app activity is not as private as users believe. Due to overlooked vulnerabilities in app design, permissions, and third-party integrations, sensitive user actions—from messages and purchases to location tracking—can be accessed or leaked far more easily than most would expect.

The Anatomy of the Leak

The problem often starts with improper use of APIs, weak encryption, or excessive permissions granted by users who may not fully understand what they’re agreeing to. Add to this the rise of SDKs (Software Development Kits) from third-party providers—used to add features or monetize apps—and you’ve got a recipe for unintentional data exposure.

Worse still, many apps fail to apply secure HTTPS protocols properly, leaving data transmissions vulnerable to man-in-the-middle attacks. In some cases, user actions within an app can be intercepted via unencrypted Wi-Fi networks or exploited by malware.

Why It Matters

For individuals, the implications are unsettling: your private messages, health data, financial info, or real-time location could be exposed. For businesses, especially those dealing with fintech, healthcare, or e-commerce, these gaps could mean regulatory violations, lawsuits, and loss of user trust.

The Role of Developers and Users

Developers must adopt security-by-design principles, which means building applications with encryption, secure authentication, and minimum necessary permissions from the ground up. Regular audits and penetration testing should be standard, not optional.

Users, meanwhile, should take a more active role in protecting their data:

• Review app permissions regularly
• Avoid using public Wi-Fi without a VPN
• Keep apps and operating systems updated
• Use two-factor authentication whenever possible

What’s Next?

Regulators across the globe are beginning to pay more attention. With increasing scrutiny from GDPR in Europe to evolving data privacy laws in Latin America and the U.S., companies that fail to secure in-app activity may soon face stiff penalties.

But beyond regulation, the bigger driver is trust. In a digital world, users will stick with the brands that protect their privacy—and abandon those that don’t.

Conclusion In-app security can no longer be an afterthought. As our digital lives become more app-centric, the security of those environments must evolve accordingly. Because in 2025, privacy is not a feature. It’s a right—and a responsibility.

In a bold legal move, Chegg, an educational technology company based in Santa Clara, California, has filed a lawsuit against Google in the U.S. District Court for the District of Columbia. The complaint accuses Google of abusing its monopoly power in the search engine market to suppress competition and harm smaller companies, like Chegg, that depend on fair access to digital visibility. Chegg claims that Google’s actions have significantly hindered its ability to reach and serve its student-focused user base.

Chegg argues that Google’s dominance in search allows it to prioritize its own products and services, often placing them above organic or third-party results. In doing so, Chegg alleges that Google creates an unfair playing field where smaller, independent platforms are buried in search rankings. This kind of behavior, they claim, directly affects Chegg’s user traffic, revenue, and brand visibility—especially as students increasingly rely on search to access educational content.

The lawsuit also touches on broader concerns about Google’s influence over the digital marketplace, suggesting that it goes beyond standard competition and veers into anti-competitive conduct. By allegedly favoring its own tools—such as AI-generated answers or Google’s own educational snippets—Google may be diverting traffic that would otherwise lead users to Chegg’s platform. This has a direct impact on Chegg’s ability to grow, attract new users, and remain competitive in a saturated market.

This case could become a landmark moment in the ongoing debate around Big Tech monopolies and fair competition online. While regulators and watchdog groups have been scrutinizing tech giants like Google, Amazon, and Meta for years, lawsuits like Chegg’s bring a focused, real-world example of the potential harm caused by search engine bias. If successful, this lawsuit could push for greater transparency in search algorithms and reinforce the need for antitrust reform in the tech sector.

Ultimately, the Chegg vs. Google lawsuit represents more than just a legal dispute between two companies—it signals a rising tide of discontent among smaller businesses who feel overshadowed in the digital space. As this case progresses, it may shape how search engines are allowed to operate in the future and determine whether giants like Google will be held accountable for practices that affect the broader online ecosystem.

A large-scale botnet campaign has been intensifying since January 2025, posing a major cybersecurity threat to businesses worldwide. According to The Shadowserver Foundation, cybercriminals are leveraging a vast network of compromised devices—up to 2.8 million unique IP addresses daily—to launch brute-force attacks on web login interfaces of VPNs, firewalls, and other edge devices. These attacks target well-known vendors such as Palo Alto Networks, Ivanti, and SonicWall, aiming to breach security systems and gain unauthorized access to corporate networks.

The distribution of these attacking IPs is heavily concentrated in specific regions, with Brazil alone accounting for 1.1 million of the total compromised addresses. Other significant sources include Turkey, Russia, Argentina, Morocco, and Mexico, indicating a well-coordinated global operation. The devices being exploited are primarily routers and IoT equipment from manufacturers like MikroTik, Huawei, Cisco, Boa, and ZTE. These internet-exposed devices, often used for remote access, are being hijacked and weaponized, making detection and mitigation more challenging for businesses relying on secure network infrastructures.

Once compromised, these devices allow attackers to anonymize their malicious traffic, effectively masking their operations and making it difficult to trace back to the source. The hacked routers and IoT systems can also be used as launchpads for further cybercrimes, such as spreading malware, stealing sensitive business data, or executing DDoS attacks against corporate and government infrastructures. The scale and persistence of this botnet campaign highlight how vulnerable unsecured network devices remain in today’s cybersecurity landscape.

Authorities, including CISA (Cybersecurity and Infrastructure Security Agency), are closely monitoring the situation, working alongside organizations like The Shadowserver Foundation to assess the impact and guide businesses on how to defend against these attacks. Cybersecurity experts urge corporate IT teams to take immediate precautions, including enforcing strong passwords, enabling multi-factor authentication (MFA), applying firmware updates, and restricting remote access to minimize exposure.

This ongoing surge in botnet activity serves as a critical warning for businesses that securing edge devices must be a top priority. As cybercriminals refine their tactics, companies must take a proactive stance by strengthening their cyber defenses, implementing strict security policies, and staying ahead of the evolving threat landscape to avoid becoming the next victim of 2025’s largest botnet attack.

The artificial intelligence landscape is witnessing a new wave of innovation, and DeepSeek, a Chinese AI startup, has emerged as a key player with its latest model, DeepSeek-R1. Unlike many proprietary AI models controlled by tech giants, DeepSeek-R1 is open-source, making it freely accessible to developers, researchers, and businesses worldwide. Its performance in complex reasoning tasks, particularly in coding and mathematics, has placed it among the most competitive AI models currently available. As the model gains traction, discussions surrounding its potential, efficiency, and ethical considerations have intensified.

Cutting-Edge Efficiency and Performance

DeepSeek-R1 stands out not only for its accessibility but also for its efficiency. While many leading AI models require extensive computational resources, DeepSeek-R1 has been designed to achieve high-level performance with optimized resource usage. By implementing advanced training techniques and an innovative architectural structure, the model can deliver superior results with lower computational costs. This makes it a valuable tool for organizations seeking powerful AI capabilities without the financial burden of large-scale infrastructure.

DeepSeek’s decision to make its model open-source has had a significant impact on the AI industry. It challenges the dominance of proprietary AI models and encourages greater transparency and collaboration within the AI research community. The model’s availability allows a broader range of industries and individuals to integrate AI into their work, fueling innovation across multiple sectors. In response, established AI companies may need to rethink their strategies to remain competitive in a rapidly evolving technological landscape.

Despite its strengths, DeepSeek-R1 has also sparked concerns regarding data sourcing and ethical AI development. Some industry experts question whether the model has been trained on proprietary or copyrighted data without clear authorization. Additionally, the open-source nature of the model raises regulatory challenges, as advanced AI technology can be used for both positive and potentially harmful applications. As AI governance continues to evolve, the conversation around responsible AI development and usage remains critical.

DeepSeek-R1 represents a significant shift in the AI ecosystem. By prioritizing accessibility, efficiency, and innovation, DeepSeek is positioning itself as a formidable force in the industry. However, as with any disruptive technology, its rise brings both opportunities and challenges. The coming years will determine how the AI industry adapts to the increasing prominence of open-source models, and whether DeepSeek-R1 will serve as a model for future AI developments or face regulatory hurdles that could impact its widespread adoption.

The International Casinos Exhibition (ICE) has arrived in Barcelona for the first time, taking place at Fira Barcelona Gran Via from January 20 to 22, 2025. Known as a premier event in the gaming and betting sectors, ICE has transitioned from its long-time base in London to the vibrant city of Barcelona. This year’s event has brought together over 55,000 professionals from 170 countries, along with more than 600 exhibitors and delegates from 200 regulatory organizations.

Covering a massive 120,000 square meters across six exhibition halls, ICE Barcelona highlights cutting-edge innovations in gaming technology. Attendees have the chance to explore developments in virtual reality, esports, and online gaming, alongside new payment solutions and industry-specific technologies. Accompanying the exhibition are thought-provoking conferences and workshops focusing on regulatory updates, responsible gambling practices, and emerging trends shaping the future of the industry.

This year’s ICE features a variety of new initiatives aimed at fostering collaboration and innovation. The ICE Association Assembly facilitates dialogue among trade bodies, creating opportunities across global markets. The rebranded World Gaming Forum addresses critical issues such as technological advancements and policy shifts. Additionally, the Sustainable Gambling Zone, supported by major players like Flutter Entertainment, emphasizes the industry’s commitment to environmentally and socially responsible practices.

While the event avoids large-scale advertising due to the nature of the gaming industry, its economic impact on Barcelona is substantial. Hotels, restaurants, and other businesses in the city have seen a surge in activity, thanks to the influx of attendees. Experts estimate that ICE 2025 will generate around 300 million euros for the local economy, making it not only a pivotal moment for the gaming industry but also a boon for Barcelona’s business and tourism sectors.

When it comes to cybersecurity in 2025, artificial intelligence (AI) is top of mind for many analysts and professionals. The increasing complexity and scale of cyber threats have made traditional security measures insufficient, driving the adoption of AI-driven solutions across industries. AI is being leveraged to detect, predict, and respond to cyberattacks with unprecedented speed and accuracy.

On the defensive side, AI-powered systems can analyze vast amounts of data in real time, identifying patterns that may indicate a breach or malicious activity. Machine learning algorithms are being used to enhance threat detection by adapting to new and evolving tactics used by cybercriminals. For example, AI can detect anomalies in network traffic or user behavior that might signal an attempted intrusion.

Proactively, AI is also shaping the offensive cybersecurity landscape. Ethical hackers and security professionals are employing AI to simulate sophisticated attacks, testing the resilience of their defenses against cutting-edge methods such as AI-generated phishing campaigns or deepfake-enabled social engineering.

However, AI itself is not without risks. Cybercriminals are increasingly using AI to develop smarter malware, automate large-scale attacks, and outpace traditional security measures. This arms race between attackers and defenders underscores the need for robust governance, ethical considerations, and ongoing innovation in cybersecurity technologies.

Looking ahead, the integration of AI into cybersecurity strategies will likely be a defining trend in 2025 and beyond. Key areas of focus include strengthening AI algorithms against adversarial attacks, improving collaboration between public and private sectors, and addressing privacy concerns to maintain trust in AI-powered systems. As cyber threats grow more sophisticated, AI will continue to play a central role in safeguarding digital ecosystems worldwide.

Amazon is now warning sellers that it cannot accept all shipments because it is currently having capacity problems in its logistics centers in Europe. This means that sellers in their turn may face failures delivering their goods to the market by the holidays.

The ecommerce giant announced its bottlenecks in logistics on its SellerCentral. As Amazon’s logistics center have reached capacity, the company said that there can be delays in booking merchant’s inventories.

The capacity problems affect Amazon’s logistics centers in several countries such as Germany, Italy, France, Spain, the Czech Republic and Poland. “If we are unable to accept your shipment, we will arrange the next available appointment directly with your carrier. We know how important the receipt of your inventory is for the holiday season and are working to resolve these capacity bottlenecks as quickly as possible”, said the marketplace.

The ecommerce giant was already expecting bottlenecks during the busiest ecommerce season. In July, Amazon already advised sellers to send inventory for the holiday season to logistics centers by August and September so that it could focus on processing customer orders during November and December.

And in October, the marketplace also announced a temporary extension of the deadline for returning goods to customers. This would give consumers more time to return goods, which means that it would increase the flow of returned goods to logistics centers.

In Germany, Amazon has already suspended incoming deliveries from DHL. In this regard, the carrier now returns the affected parcels to the sellers until further notice. According to their own words, Amazon and DHL are currently working on a solution to the problem.

Forty-nine per cent of the thousand largest European online sellers in Europe have their headquarters in Europe. Thus, more than a half of them are based elsewhere, primarily in the United States or China. The traffic share of these non-European companies in the top thousand is even larger, 74 per cent.

This is reported by Internet Retailing, based on data from RetailX. It is the first time the headquarters of Europe’s largest online sellers have been analyzed.

These figures include Amazon and eBay, which dominate the marketplace landscape in the region and globally. But they also point to the increasing power and reach of companies like Shein, Alibaba, and Temu, which have captured a significant share of sales in the region in a short period.

However, unlike traffic share, the report does not highlight the total revenue share of non-European companies.

In an affiliated report, ChannelX examines the dominant role of online marketplaces in European ecommerce, noting that many consumers effectively use them as search engines for retail.

According to the researchers, there are approximately 400 D2C marketplaces operating across Europe, along with more than 250 B2B platforms.

Internet Retailing highlights both the emergence of specialized vertical marketplaces from new entrants and the marketplace initiatives of established (online) retailers.

The latest quarterly report from Statistics Netherlands shows that there are more than 100,000 online stores in the country. At least this number of companies have online sales as their main activity, but the number is increasing.

The amount of online stores with a broad product range increased 14 percent last year.

Three months earlier, in the quarterly update from July, the statistics agency counted 97,905 companies in the same category. This is a difference of 2,085. That means that since this summer, around 700 new online stores were started every month in the Netherlands.

The amount of companies that have online sales as their main activity has more than doubled compared to five years ago. At the end of 2019, Statistics Netherlands counted 46,430 companies in the category. Since the beginning of last year, the country has more online stores than brick-and-mortar stores.

An interesting fact is that total spending in recent years did not grow along with the number of businesses. Online ecommerce sales increased by 1 percent, according to the latest Market Monitor by ecommerce association Thuiswinkel.org. In short, people spent the same amount of money on products while the amount of online stores did increase.

During the corona era, when online spending increased dramatically, the number of online stores grew rapidly, with 2021 being the record year. Although the growth rate slowed down after the pandemic, new ecommerce companies kept coming in. To be exact, the difference between now and five years ago is 115 percent.

In their report, Statistics Netherlands counts companies operating under SBI code 4791, or companies that primarily sell products over distance. This includes mail order companies and teleshopping providers, but their number is so low that Statistics Netherlands simply refers to all companies as ‘online stores’.

The Dutch Chamber of Commerce, though, counts 109,323 companies in the internet retailing category. An important difference is that Statistics Netherlands classifies companies by main activity or industry (the SBI classification), while the Chamber of Commerce includes both main and secondary branches of a company in the Trade Register.

According to Statistics Netherlands, last month there were 22,985 online stores selling clothing, or 23 percent of the total number of businesses. This makes clothing the most popular category, followed by online shops selling a general assortment (20,325 companies, or 20.3 percent) and online stores selling home and garden items (18,250, or 18.3 percent).

This year, the number of online shops with a general assortment grew the most in both absolute and relative terms. Indeed, 2,465 entrepreneurs were added since the measurement in the first quarter. This is an increase of 14 percent.

EBay has changed its cancellation policy rules giving shoppers more flexibility to cancel their purchases. From now on, they can cancel an order as long as the seller has not marked it as shipped. The company describes this as a simplification and benefit for both shoppers and sellers.

The new policy will take effect on August 28. EBay has informed its sales partners in countries including the United Kingdom, Germany, and France. When customers press the ‘Cancel order’ button, they can retract their purchase, and the seller will be notified. The seller then has three days to accept or decline the request. The company says that on paid orders, eBay will automatically decline the request after three days, but it encourages sellers to respond quickly.

EBay also encourages sellers to be sympathetic towards cancellation requests. When possible, it’s recommended they accept the request, especially if it is sent within minutes or a few hours of when an order is placed. Doing so has shown to discourage return requests or ‘item not received’ cases and encourages the buyer to return to eBay for their next purchase.

On acceptance, eBay promises to automatically issue a full refund to the buyer and fee credits to sellers in accordance with their fee credits policy.

EBay buyers used to only have one hour to cancel an order after placing it. The company, which continues to implement improvements for both commercial and private sellers, justifies the policy change with the results of the tests conducted. These tests show that the number of cancellation requests increases only slightly with the introduction of the new policy – from 0.9 to 1.1 requests per 100 transactions. According to eBay, this is offset by a 25% increase in customer satisfaction.

EBay also promises to protect sellers who decline a cancellation request by removing negative or neutral feedback on these orders.