This Week in Security: AI Toys Expose Kids to Sex, Drugs, and Propaganda

Toys for children have become increasingly sophisticated, often incorporating advanced AI to engage young users in conversation. However, a troubling trend has emerged: some of these AI-enabled toys are discussing highly inappropriate topics.

Investigations revealed several toys, including a sunflower with speech capabilities and an intelligent bunny, responded shockingly when posed with questions on sensitive issues. These responses suggest either insufficient protective measures or vulnerabilities that can be exploited. One toy provided instructions on using matches and sharpening tools, while another recommended a 'leather flogger' for use during 'impact play.'

In a separate instance, when questioned about comparisons made between Chinese leader Xi Jinping and Winnie the Pooh, a toy admonished the user, condemning the remark as unkind and offensive. This response reflects a crackdown on such comparisons that have surfaced in China since 2018.

Travelers to the US and Potential Social Media Scrutiny

Travel patterns to the United States are shifting, partly due to proposed regulations that could require visitors to disclose extensive personal data, including social media histories spanning five years. The U.S. authorities have proposed that those entering under the ESTA visa waiver, encompassing numerous allied nations, should include this information as compulsory. The proposal further seeks to gather detailed personal and professional histories, biometric data, and familial details.

Corporate Accountability and Cybersecurity in South Korea

Recent cyberattacks have significantly impacted South Korean businesses, leading to the resignation of leaders like Park Dae-jun, CEO of Coupang Corp. After a breach exposed the data of millions of users, Park publicly expressed remorse and stepped down, taking responsibility for both the incident and the cleanup efforts. This resignation is part of a broader trend in South Korea, where other major companies have endured similar breaches and leadership changes are underway.

Unusual Legal Case Arising from a Device Deletion in the US

An unusual legal case has emerged in Atlanta involving Samuel Tunick, who was detained after allegedly erasing data from his smartphone prior to a search by U.S. Customs. While the specifics of why his device was sought are unclear, this situation is notable because charges over personal data management actions like this are rarely pursued in the U.S.