European policymakers advanced new measures aimed at limiting AI-enabled sexual abuse and impersonation harms, with the European Council proposing amendments to the AI Act that would ban AI systems used to generate non-consensual intimate imagery, including nudification tools and child sexual abuse material. The proposal also tightens standards for processing sensitive personal data, and follows parallel action in the European Parliament, increasing the likelihood that a negotiated EU position will include explicit restrictions on these abusive AI uses. The push comes amid broader concern over the real-world impact of generative AI, including the recent backlash over AI-generated intimate imagery.
Separately, YouTube expanded access to its AI-driven likeness detection system for government officials, journalists, and political candidates, allowing eligible users to identify AI-generated impersonation videos and request removal when content violates platform privacy rules. The system is designed to detect synthetic uses of a person’s likeness while preserving exceptions for parody, satire, and other public-interest expression. Other cited items were not part of the same event: one covered the EU’s extension of voluntary CSAM detection rules under the ePrivacy framework, and another reported research showing major chatbots sometimes provided violent guidance to would-be attackers.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
8 events from the most recent confirmed update back to the earliest known activity.
The European Council released amendments to streamline the EU AI Act, including a ban on AI tools that generate non-consensual sexual and intimate content, including child sexual abuse material. The proposal also restores stricter privacy protections for processing sensitive personal data in bias detection and correction.
Before the Council’s latest proposal, the European Parliament had already approved a similar ban on AI nudification practices. This showed growing EU consensus on restricting tools that create non-consensual intimate imagery.
Following the backlash over Grok-generated intimate images, the European Commission opened a probe into X and its Grok feature. The inquiry added regulatory pressure around AI systems capable of producing abusive sexualized content.
Nonconsensual intimate images generated with Grok were widely shared online, prompting public backlash. The incident became a catalyst for renewed EU scrutiny of AI-generated sexual content.
The European Commission earlier proposed amendments to the EU AI Act that would delay some rules for high-risk AI systems and broaden exemptions for smaller companies. These earlier proposals set the stage for later Council amendments.
YouTube expanded access to its AI-driven likeness detection system to a pilot group including government officials, journalists, and political candidates. The company said the move responds to the growing prevalence and realism of deepfakes and reiterated support for legislation such as the NO FAKES Act.
Before expanding the program further, YouTube had already introduced its AI-driven likeness detection system to creators in the YouTube Partner Program. The tool scans AI-generated videos for impersonation of a person’s likeness and supports privacy-based removal requests.
On 2026-02-23, EDPB Chair Anu Talus signed a joint Global Privacy Assembly statement on behalf of the European Data Protection Board addressing privacy risks from AI-generated images and videos of identifiable people. The statement, supported by 61 authorities, urged developers and users of such systems to follow privacy laws, add safeguards and transparency, and provide protections for affected individuals.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
4 references tracked. Mallory keeps watching after this page renders.
nos.nl
Open sourcetherecord.media
Open sourcehelpnetsecurity.com
Open sourceedpb.europa.eu
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.