EU Parliament and Council negotiators reached a provisional agreement to amend the EU Artificial Intelligence Act, adding a ban on AI systems used to create non-consensual sexualized depictions of identifiable people and synthetic child sexual abuse material, including so-called "nudifier" apps. The deal also advances related transparency rules by setting watermarking obligations for AI-generated content to 2 December 2026, while the new ban would also take effect on that timeline if formally adopted. The agreement still requires final approval by both Parliament and the Council.
The package also delays several AI Act compliance deadlines and simplifies parts of the regime under the EU's digital omnibus effort. Obligations for standalone high-risk AI systems would move to 2 December 2027, while AI used as safety components in products covered by sectoral safety laws would shift to 2 August 2028. Negotiators also narrowed some machinery-related requirements, allowed limited use of sensitive personal data to detect and correct algorithmic bias, extended certain SME exemptions to small mid-cap firms, and centralized enforcement for some general-purpose AI systems through the EU AI Office.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
3 events from the most recent confirmed update back to the earliest known activity.
Researchers at RedAccess reported that more than 5,000 publicly accessible web applications built with AI coding platforms lacked proper protections and exposed sensitive corporate and personal data. The investigation also identified phishing pages hosted on AI coding platform domains impersonating major brands.
Negotiators from the European Parliament and Council reached a provisional agreement under the digital omnibus package to amend the AI Act. The deal delays some compliance deadlines, moves watermarking obligations to 2 December 2026, and bans AI systems used for child sexual abuse material and non-consensual sexualized depictions of identifiable persons.
The European Parliament announced a position on amendments to the AI Act that would delay parts of the law’s application and ban AI systems used to create child sexual abuse material or non-consensual sexualized depictions, including nudifier apps.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
10 references tracked. Mallory keeps watching after this page renders.
cysecurity.news
Open sourcecysecurity.news
Open sourcethecyberexpress.com
Open sourceeuroparl.europa.eu
Open sourceeuroparl.europa.eu
Open sourcenos.nl
Open sourceiapp.org
Open sourcemlex.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.