IT Weekly Review

The Week in Tech: AI’s Enterprise Push, Apple’s ‘Air’ Gamble, and a Historic Cyberattack

By

The week ending September 12, 2025, served as a powerful illustration of an information technology industry navigating a period of high-stakes transformation. The relentless march of Artificial Intelligence continued its pivot from abstract potential to tangible enterprise integration, with a flurry of specialised tools and massive strategic investments underscoring its operational importance. In the consumer hardware arena, Apple placed a significant bet on a new design philosophy, attempting to redefine the premium smartphone market. This progress, however, was starkly contrasted by a software supply chain crisis of historic proportions, which served as a critical wake-up call about the fragile foundations upon which the digital economy is built. Looming over these developments was the tightening grip of regulators on both sides of the Atlantic, signalling a new era where governments are no longer passive observers but active participants in shaping the technological landscape. These events, far from being isolated incidents, are interconnected threads in a larger narrative of innovation, vulnerability, and governance in the digital age.

The AI Enterprise Onslaught Continues

The narrative of Artificial Intelligence this week was one of aggressive, focused integration into the core functions of business. The era of hyping foundational models is rapidly giving way to a more pragmatic, revenue-focused race to build the application layer, with companies launching a suite of specialised, vertical-specific solutions designed to solve tangible business problems and empower non-technical users.

The Proliferation of Business-Centric AI Tools

The market saw a deluge of announcements aimed squarely at enterprise customers, reflecting a crucial maturation of the AI sector. This shift moves beyond simply providing access to a generic model and focuses on re-architecting core business workflows around intelligent agents and assistants.

Online education giant Coursera launched “Skill Tracks,” a data-backed learning solution that allows corporations to create tailored upskilling programs, aiming to accelerate the development of critical competencies across their teams.1 Similarly,

Expert.ai enhanced its generative AI platform with new enterprise-ready natural language processing models, improving the accuracy of tasks like summarisation and data extraction for business applications across multiple languages.1

A significant trend is the tailoring of AI for specific industries. Imply rolled out “Imply Lumi,” a vertical AI analytics platform designed to power real-time business intelligence in sectors such as finance, retail, and media.1 

Eli Lilly and Company, which launched “Lilly TuneLab.” This platform provides smaller biotechnology companies with access to AI-enabled drug discovery models trained on over $1 billion worth of Lilly’s proprietary research data, aiming to accelerate the creation of new medicines.2

Accessibility for non-technical users remains a key driver of innovation. Pigment expanded access to its “Analyst Agent,” an AI assistant that helps business users with enterprise planning and modelling.1

Sigma unveiled new augmented AI features for its cloud analytics platform, enabling conversational querying and automated insights.1 In a move to bring AI power to a ubiquitous business tool,

Sourcetable introduced “AI SuperAgents for Excel,” a suite of tools designed to automate complex data analysis and workflows within spreadsheets.1 Pushing the boundaries of self-service analytics,

ThoughtSpot unveiled the “Boundaryless Agent,” which allows users to run analytics across cloud warehouses and SaaS applications using conversational interfaces and agentic automation.1

To lower the barrier to entry for businesses hesitant to dive into the complexities of AI, companies like Syntax are now offering “GenAI starter packs.” These packages are designed to help organisations deploy generative AI into their workflows securely, quickly, and effectively.1

Major Investments Signal Market Confidence

The strategic importance of this enterprise AI push was underscored by a series of massive investments from key industry players. In a move that highlights the critical link between the hardware that powers AI and the software companies developing the models, Dutch semiconductor giant ASML invested €1.3 billion in European AI leader Mistral AI. The deal makes ASML the largest shareholder and boosts Mistral AI’s valuation to a staggering €14 billion, signalling a major strategic bet on Europe’s AI ecosystem.4

Investor enthusiasm for specialised AI applications was further demonstrated by ElevenLabs, a voice AI startup whose technology can generate human-like speech from text. The company saw its valuation double from $3.3 billion to $6 billion in a secondary sale, a rapid appreciation that reflects intense market demand for its advanced capabilities.4

The ecosystem forming around AI is also attracting significant capital. Koah, a startup building an advertising network within AI applications, raised $5 million. This move signals an emerging strategy to monetise AI chatbots beyond simple subscription models, suggesting a future where AI interactions are supported by targeted advertising revenue streams.4

CompanyProduct/UpdateCore FunctionalityTarget Audience/Industry
CourseraSkill TracksData-backed learning solution for creating tailored upskilling programs.Enterprise L&D, Functional Teams
Expert.aiEnhanced GenAI PlatformUpgraded NLP models for more accurate summarisation extraction, and understanding.General Enterprise
ImplyImply LumiVertical AI analytics platform for real-time business intelligence.Finance, Retail, Media
Eli LillyLilly TuneLabAI/ML platform providing access to proprietary drug discovery models.Biotechnology Companies
PigmentAnalyst AgentIntelligent AI assistant for enterprise planning, analysis, and modellingBusiness & Financial Analysts
SigmaPlatform EnhancementsAugmented AI features for automated insights and conversational querying.Business Intelligence Users
SourcetableAI SuperAgents for ExcelAdvanced automation, data analysis, and workflow orchestration within spreadsheets.Excel Power Users, Analysts
ThoughtSpotBoundaryless AgentAgentic AI for running analytics across cloud warehouses and SaaS apps via conversation.General Enterprise
SyntaxGenAI Starter PackA toolkit to help organisations securely and rapidly deploy generative AI.General Enterprise

The sheer volume and specificity of these new tools and investments point to a fundamental shift. The initial AI boom was characterised by the demonstration of the raw power of large language models. Now, the industry has moved firmly into a “solutionizing” phase. To capture the mainstream market, technology must solve tangible, often mundane, business problems. The announcements from this week show that the focus is no longer on what AI can do in theory, but on what it will do to improve a specific workflow, from financial planning to drug discovery. This specialisation may have long-term consequences for the market structure. As these purpose-built AI applications become deeply embedded in business processes, the underlying foundational models may become increasingly commoditised The real competitive advantage and customer “stickiness” will reside not in the base model, but in the highly refined, industry-specific application layer that sits on top of it.

Apple Redefines Thin with the iPhone Air

Apple commanded the consumer technology spotlight this week, holding its annual September product launch event on Tuesday, September 9. Under the revealing tagline “Awe Dropping,” the company unveiled a redesigned iPhone 17 lineup, with the star of the show being a daring new model that signals a significant strategic shift in how Apple approaches the premium smartphone market.5

The iPhone Air: A New Flagship Category

The event’s centrepiece was the all-new iPhone Air, which replaces the “Plus” model in Apple’s lineup.6 Priced starting at $999, the Air is an exercise in design-led engineering. At a mere 5.6mm thick, it is the thinnest smartphone the company has ever produced, a feat achieved through the use of premium materials and some notable engineering compromises.7

The device features a large 6.5-inch Super Retina XDR display with a 120Hz ProMotion refresh rate, housed in a polished grade 5 titanium frame. For enhanced durability, Apple used its more scratch-resistant Ceramic Shield 2 material for the front cover and, for the first time, also used Ceramic Shield for the back of the phone instead of traditional glass.9

To power this ultra-slim device, Apple included its advanced A19 Pro chip, the same processor found in the higher-end Pro models. However, the version in the Air has one less GPU core, a minor differentiation in performance.9 The most significant compromise made to achieve its thin profile is in the camera system. The iPhone Air features only a single 48-megapixel main camera on the rear. While powerful, it lacks the versatile Ultra Wide and Telephoto lenses that define the Pro models’ camera arrays.9 Other minor trade-offs include a slightly slower wireless charging speed of 20W compared to the 25W supported by its thicker siblings.9

Upgrades Across the Lineup

While the Air captured headlines, Apple also introduced significant upgrades to the rest of the iPhone 17 family. The base iPhone 17, starting at $82,900 in India, now features a 120Hz ProMotion display for the first time and runs on the new A19 chip.6 The iPhone 17 Pro and Pro Max models received further camera enhancements, including upgraded 48-megapixel sensors across the board, with the top-tier Pro Max offering an impressive 8x optical zoom capability.11

In a nod to the growing sophistication of cyber threats, Apple also announced that the new iPhones are the first to incorporate a full suite of hardware-level memory protections designed to eliminate entire classes of security vulnerabilities commonly exploited by hackers.11

Pre-orders for the entire iPhone 17 lineup began on Friday, September 12, with the devices scheduled to become available in stores on Friday, September 19.10

FeatureiPhone 17iPhone AiriPhone 17 ProiPhone 17 Pro Max
Starting Price (US)$829 (est.)$999$1,099 (est.)$1,199 (est.)
Display Size6.3-inch6.5-inch6.3-inch (est.)6.9-inch (est.)
ProcessorA19A19 Pro (5-core GPU)A19 Pro (6-core GPU)A19 Pro (6-core GPU)
Rear Camera SystemDual 48MP (Wide, Ultra Wide)Single 48MP (Wide)Triple 48MP (Wide, Ultra Wide, Telephoto)Triple 48MP (Wide, Ultra Wide, Telephoto w/ 8x zoom)
Key Feature120Hz ProMotion DisplayUltra-slim 5.6mm design, Titanium frameAdvanced camera system, Pro performanceLargest display, Longest battery life, 8x optical zoom

The introduction of the iPhone Air is more than a simple product refresh; it represents a strategic fragmentation of Apple’s high-end market. The global smartphone market has reached a stage of maturity where radical, year-over-year functional improvements are increasingly difficult to achieve. In this environment, Apple is making a calculated gamble. It is replacing the “Plus” model—a device defined by a straightforward feature increase (a bigger screen and battery)—with the “Air,” a device defined by a design philosophy and an aesthetic statement (extreme thinness).6

By pricing the Air at $999, the same tier as a previous Pro model, but with a technically inferior camera system, Apple is betting that a specific segment of premium consumers will value design novelty and status over functional superiority.9 This strategy mirrors the success of the MacBook Air, which carved out a massive and loyal market by prioritising portability and elegant design over raw processing power. The attempt to replicate this success in its most important product line suggests a potential future where the iPhone lineup bifurcates further. One can envision a “Pro” line that continues to push the boundaries of performance for power users and photographers, and an “Air” or “Design” line for consumers who prioritise aesthetics, portability, and the statement the device makes. This allows Apple to target different premium consumer identities, potentially increasing its overall average selling price and further solidifying its dominance in the high-end market.

Anatomy of a Crisis: The ‘Great NPM Heist’ Shakes the Software Supply Chain

The week’s most alarming development came from the world of cybersecurity, where a massive software supply chain attack exposed the profound vulnerabilities undergirding the modern digital infrastructure. Dubbed the “Great NPM Heist,” the incident served as a stark reminder of how the security of multi-trillion dollar industries can be compromised through startlingly simple means.14

The Attack Unfolds

On September 8, security researchers began to uncover a coordinated attack targeting the NPM registry, the primary package manager for the JavaScript programming language.14 The attackers successfully compromised and published malicious versions of at least 18 highly popular JavaScript packages. These were not obscure libraries; they included foundational utilities like

debug, chalk, and ansi-styles, which are dependencies in countless applications and websites and are collectively downloaded over 2 billion times per week.15

The Attack Vector: Simple Yet Devastating

The breach was not the result of a sophisticated zero-day exploit or a complex technical intrusion. Instead, the attackers relied on a classic social engineering technique: phishing. Package maintainers, many of whom are unpaid volunteers, received legitimate-looking emails purporting to be from NPM support, using the domain “npmjs.help”.16 These emails tricked the maintainers into resetting their two-factor authentication credentials, which gave the attackers full control over their accounts and the ability to publish new versions of their packages.15

The Malicious Payload

Once in control of the accounts, the attackers pushed new, trojanized versions of the popular packages to the NPM registry. The malicious code was a crypto-stealing malware designed to execute within an end-user’s web browser.15 The payload worked by intercepting network and wallet API calls. It would scan for transactions involving various cryptocurrencies—including Bitcoin, Ethereum, and Solana—and then silently replace the intended recipient’s wallet address with an address controlled by the attackers. To evade detection, the malware even used “look-alike” addresses that were visually similar to the original, making the swap difficult to spot on-screen.17

The Aftermath: A Paradox of Scale and Impact

The potential blast radius of the attack was unprecedented, making it the largest supply chain attack in NPM’s history.15 During the short window that the malicious versions were live—estimated to be between six and eight hours—they were downloaded over 2.5 million times.15 According to telemetry from cloud security firm Wiz, while 99% of cloud environments used at least one of the affected packages, the malicious code itself was present in at least 10% of those environments during the exposure window, demonstrating the attack’s rapid propagation.19

Despite this massive scale, the direct financial damage was surprisingly minimal. Initial blockchain analysis showed that the attackers had managed to steal only a few hundred to a thousand dollars’ worth of cryptocurrency.15 This paradox of immense reach and low impact was due to a swift response from the open-source community. The attackers made a critical error by using a well-known JavaScript obfuscator, which made the malicious payload relatively easy to detect. Once identified, the compromised packages were quickly removed from the NPM registry, and warnings were disseminated throughout the developer community, staunching the bleeding before significant financial losses could occur.15

The “Great NPM Heist” is a powerful illustration of the brittle foundations upon which much of the modern software ecosystem is built. The attack’s success was not predicated on technical genius but on a simple failure of the human element, demonstrating that the security of global commerce can hinge on the phishing resilience of a single volunteer developer. The concept of transitive dependencies—where a vulnerability in one small, foundational package can cascade through millions of downstream projects—was laid bare.

While the goal of this particular attack was simple theft, the level of access the attackers gained could have been leveraged for far more destructive purposes, such as widespread espionage, data destruction, or the deployment of ransomware at a catastrophic scale.16 The minimal financial damage was not a testament to the robustness of the system but rather a combination of attacker error and the remarkable vigilance of the open-source community. It was a near-disaster that highlights a deep, systemic risk. This event will almost certainly accelerate calls for more formalised security standards for critical open-source projects, potentially leading to professionalised maintenance, mandatory security audits, and more robust security tooling from platform owners like GitHub and NPM. It exposes the fundamentally unsustainable nature of relying on the goodwill of volunteers to secure the world’s critical digital infrastructure.

The Regulators’ Gaze: Data Acts and AI Probes

This week highlighted a clear and accelerating trend of governments on both sides of the Atlantic moving from a hands-off approach to active intervention in the technology sector. Landmark regulations came into force, controversial proposals moved closer to reality, and new government-industry partnerships were forged, all signalling that the era of permissive oversight is decisively over.

The EU Data Act Comes into Force

On September 12, the European Union’s landmark Data Act officially became applicable, establishing a sweeping new framework for data governance with significant extraterritorial reach.14 The act is designed to create a fairer data economy by shifting control of data away from manufacturers and large platform holders and toward users.

Its key provisions will have a profound impact on tech companies globally. First, it mandates that manufacturers of Internet of Things (IoT) devices and other connected products—from smart watches to industrial machinery—must make the data generated by those products accessible to the users themselves. Upon a user’s request, this data must also be shared with third-party service providers, such as independent repair shops.20 Second, the act introduces powerful new rules to facilitate seamless switching between cloud service providers. It aims to eliminate vendor lock-in by requiring providers to remove technical and contractual barriers to switching and by instituting a phased ban on data egress fees, which will be fully prohibited by 2027.21 Finally, the legislation seeks to protect small and medium-sized enterprises (SMEs) by prohibiting unfair contractual terms in B2B data-sharing agreements.22

ProvisionRequirement for Tech CompaniesBusiness Impact
IoT Data Access & SharingManufacturers of connected products must design them to allow users free and easy access to the data they generate. Data must be shared with third parties upon user request.Requires redesign of products and data governance systems. Creates opportunities for third-party aftermarket services (e.g., repair, analytics) but may challenge existing business models and IP protections.
Cloud Service SwitchingProviders of data processing services (IaaS, PaaS, SaaS) must remove commercial, technical, and contractual barriers that prevent customers from switching to a competitor or on-premise solutions.Reduces customer lock-in and increases competitive pressure. Requires providers to support interoperability and data portability. Will force changes to pricing models and contract terms.
Ban on Egress FeesSwitching charges for moving data out of a cloud service must be progressively reduced and completely eliminated by January 2027.Eliminates a significant revenue stream and a tool for customer retention for major cloud providers. Lowers the cost and friction of multi-cloud or hybrid-cloud strategies for customers.
Unfair Contractual TermsUnilaterally imposed contractual terms in B2B data sharing agreements that are deemed “unfair” are not legally binding.Protects SMEs from potentially abusive terms imposed by larger market players. Requires companies to review and revise their standard data-sharing contracts to ensure fairness and compliance.
Government Data AccessCompanies may be required to provide private sector data to public bodies in cases of “exceptional need,” such as a public emergency (e.g., natural disaster, pandemic).Creates a new compliance obligation for data holders. While compensation is provided in non-emergency situations, it establishes a legal pathway for government access to commercial data.

The “Chat Control” Controversy Intensifies

The EU’s divisive “Chat Control” proposal, which aims to combat child sexual abuse material (CSAM) by requiring the scanning of private, encrypted communications, continued to advance amidst fierce opposition. A compromise proposal reportedly gained the support of 19 member states, moving it closer to a potential vote.14 Germany, however, joined a growing bloc of opposition, with its government officially coming out against the mandatory scanning of private chats.27 The debate pits privacy advocates, cybersecurity experts, and many tech companies against the proposal’s proponents. Opponents argue that it would fundamentally break end-to-end encryption, a cornerstone of digital security, and create an unprecedented tool for mass surveillance.28 Supporters, including the bill’s sponsor, maintain that it is a necessary measure to protect children from online exploitation in an environment where criminals increasingly use encrypted platforms to hide their activities.29

US Government Partners with Industry on AI Infrastructure

In the United States, the government took a more direct, industrial-policy approach to bolstering its technological standing. The U.S. Department of Energy (DOE) announced a major initiative to lease federal land at the Idaho National Laboratory (INL) for the development of large-scale AI data centres.32 This program, a key component of the Trump Administration’s American AI Action Plan, is designed to address the massive and growing energy demands of AI computing. The initiative explicitly encourages the co-location of data centres with new energy generation facilities and will give favourable consideration to projects that propose to build and use new nuclear power sources, such as small modular reactors.32 This move follows a broader executive order aimed at accelerating the federal permitting process for data centre infrastructure, signalling that the U.S. government now views AI computing capacity as a matter of national strategic importance.33

Other Regulatory Actions

The week saw further regulatory scrutiny across the tech landscape. The U.S. Federal Trade Commission (FTC) confirmed it is investigating seven major tech companies, including Google, Meta, and OpenAI, over the potential risks their companion-style AI chatbots could pose to the mental and emotional well-being of children and teenagers.36 On the cybersecurity front, the

U.S. Cybersecurity and Infrastructure Security Agency (CISA) released eleven new advisories for Industrial Control Systems (ICS), highlighting critical vulnerabilities in widely used products from Siemens and Schneider Electric.37

These disparate actions reveal a broader global trend: the geopolitization of technology infrastructure. The DOE’s data centre initiative and the EU’s Data Act are not merely domestic policies; they are strategic industrial policies designed to secure sovereign advantage in the AI era. The United States is leveraging its vast land and energy policy apparatus to build physical dominance in AI computing, treating it as a national security imperative akin to the Manhattan Project.34 The European Union, meanwhile, is deploying its formidable regulatory power—the so-called “Brussels Effect”—to shape the global digital market to its advantage. The Data Act’s provisions on cloud switching and the elimination of egress fees are a direct challenge to the business models of the dominant U.S. cloud providers, whose market power is partly derived from high customer switching costs. By mandating portability and interoperability, the EU aims to create a more competitive and open market where European providers might have a better chance to thrive.

Though their methods differ—direct industrial support in the U.S. versus market-shaping regulation in the EU—the underlying goal is the same: enhancing their respective bloc’s strategic autonomy in the defining technology of the 21st century. This forces global tech companies to navigate an increasingly multi-polar regulatory world, where product design, data governance, and business strategies must be flexible enough to comply with fundamentally different and sometimes conflicting geopolitical priorities.

Market Pulse: Funding, Acquisitions, and a Volatile Market

The financial markets sent complex and at times contradictory signals this week, reflecting an environment of high-stakes betting on AI’s future amidst broader economic uncertainty. While public markets showed cautious optimism and venture capital continued to flow into select startups, an undercurrent of concern about inflated valuations and a potential market correction persisted.

Venture Capital: The Money Flows to AI and Fintech

Despite data showing a broader venture capital market slowdown in August, with global funding falling to its lowest monthly total in eight years, significant funding rounds were announced this week, primarily concentrated in AI and fintech.38

Atlanta-based fintech startup Speedchain, which provides commercial card programs for the construction industry, closed a massive $111 million funding round. The deal was a mix of equity and debt financing, with the capital earmarked to grow its platform and fuel its lending operations.39 In another major fintech deal,

Ramp, a provider of corporate financial products, raised $500 million in a Series E round at a staggering $22.5 billion valuation, with the company planning to use the funds to scale its vision for “agentic AI” in finance automation.40

Activity remained robust in regional startup hubs. In the Southeast U.S., embedded payments startup Rainforest secured $29 million, AI firm TENEX.AI raised $27 million, and Miami-based Palm Tree Crew brought in $20 million, indicating continued investor confidence in specialised tech sectors outside of Silicon Valley.41

Strategic Acquisitions

The week also saw several significant acquisitions as larger companies moved to bolster their capabilities in key growth areas. In a major bet on user interface innovation, software giant Atlassian announced its acquisition of The Browser Company, the creator of the popular Arc browser, for $610 million.4 The deal suggests that major platform players see the web browser as a critical and evolving frontier for user experience.

Consolidation in the cybersecurity sector continued apace. Mitsubishi Electric revealed its intent to acquire industrial cybersecurity firm Nozomi Networks, a move to strengthen its defences for operational technology environments.2 In a similar vein, application delivery and security company

F5 announced it would acquire CalypsoAI, a firm specialising in AI security, for $180 million.13 These deals highlight the growing strategic importance of securing both industrial systems and the burgeoning AI landscape.

Public Markets: A Week of Cautious Optimism

On the surface, public markets ended the week on a high note. Wall Street coasted to the finish of its best week in five, with the S&P 500 edging down less than 0.1% from its all-time high and the tech-heavy Nasdaq composite rising 0.4% on Friday.42 This optimism was largely driven by macroeconomic factors, particularly growing expectations that the Federal Reserve will cut interest rates at its upcoming meeting.42

However, this positive finish belied a more volatile reality. Earlier in September, tech stocks had experienced a sharp plunge, with the Nasdaq dropping more than 5% in a single week. Tech giants that had led the 2024 rally saw significant pullbacks, with Nvidia falling 12% and Amazon shedding 8%.45 Many analysts viewed this as a “healthy reset” after the AI-driven rally had pushed tech valuations to potentially unsustainable levels, with some price-to-earnings ratios echoing the dot-com era.45

This dynamic reflects the “bifurcated market” trend also seen in venture capital, where a handful of AI-centric companies attract enormous investment while the broader tech sector faces headwinds from e-commerce saturation, antitrust scrutiny, and a more challenging growth environment.45

The financial markets appear to be in a state of cognitive dissonance. The strength in the major indices and the continued flow of mega-rounds for AI startups exist alongside a powerful undercurrent of concern about an “AI bubble” and a broader tech correction. This is not a contradiction, but rather a rational, if risky, reallocation of capital. Investors are simultaneously making highly concentrated, speculative bets on a small number of perceived AI winners, believing these companies will capture immense value in the next major platform shift. At the same time, they are pulling back from non-AI tech companies that now face higher capital costs and a more uncertain path to growth.

This creates a market of increased risk and volatility. The fate of the entire tech sector is becoming increasingly tethered to the performance of a few AI-centric giants. If the promised productivity gains from AI fail to materialise as quickly as hoped, or if the regulatory headwinds from governments in the U.S. and EU become too strong, the correction that began in early September could deepen significantly, potentially pulling the entire market down with it.

Conclusion: An Industry at an Inflection Point

The week ending September 12, 2025, was not merely a collection of disparate news events; it was a snapshot of an industry grappling with its own power, its inherent vulnerabilities, and its future role in the global economy and society. The IT sector is navigating a period of intense and defining transformation, driven by forces that are creating both immense value and significant friction.

The explosive integration of AI into the operational fabric of the enterprise is undeniable. The boom in specialised, vertical-specific AI tools and the massive strategic investments flowing into the sector demonstrate that AI is moving beyond hype and creating tangible business value. Yet, this very progress is exposing profound weaknesses. The “Great NPM Heist” served as a chilling reminder that the foundational layers of our digital world are more fragile than we assume, often secured by the goodwill of volunteers. It highlighted a systemic risk that the industry can no longer afford to ignore.

In the consumer sphere, Apple’s launch of the iPhone Air illustrates the immense pressures of a mature market, forcing even the world’s most valuable company to innovate not just on technical specifications but on design and philosophy in a bid to capture new value. Finally, the decisive actions from regulators in both Washington and Brussels show that governments are no longer content to be passive observers. They are actively shaping the technological landscape through industrial policy and market-defining regulation, turning the digital domain into an arena of geopolitical strategy. This week was a clear reflection of an industry at a critical inflection point, one where the path forward will be defined by a complex interplay of technological innovation, structural security, and sovereign ambition.

Disclaimer

This report is a summary and analysis of publicly available information for the week ending September 12, 2025. It is intended for informational purposes only and should not be construed as financial, investment, legal, or technical advice. The information and opinions expressed herein are subject to change without notice. While every effort has been made to ensure the accuracy of the information presented, its completeness or correctness is not guaranteed. Readers should conduct their own research and consult with professional advisors before making any decisions based on the content of this report.

Works cited

  1. Analytics and Data Science News for the Week of September 12 …, accessed on September 13, 2025, https://solutionsreview.com/business-intelligence/analytics-and-data-science-news-for-the-week-of-september-12-updates-from-plotly-sigma-thoughtspot-more/
  2. Weekly Recap: 9 Tech Press Releases You Need to See – The Malaysian Reserve, accessed on September 13, 2025, https://themalaysianreserve.com/2025/09/12/weekly-recap-9-tech-press-releases-you-need-to-see/
  3. Weekly Recap: 12 Health Press Releases You Need to See, accessed on September 13, 2025, https://www.prnewswire.com/news-releases/weekly-recap-12-health-press-releases-you-need-to-see-302554642.html
  4. Weekly design & AI news digest (September 8–12, 2025) | Lazarev …, accessed on September 13, 2025, https://www.lazarev.agency/articles/weekly-design-ai-news-september-8-12-2025
  5. Artificial intelligence (AI) | The Guardian, accessed on September 13, 2025, https://www.theguardian.com/technology/artificialintelligenceai
  6. iPhone 17 launch event on September 9: How, when and where to watch Apple’s ‘Awe Dropping’ 2025 event, accessed on September 13, 2025, https://timesofindia.indiatimes.com/technology/mobiles-tabs/iphone-17-launch-event-on-september-9-how-when-and-where-to-watch-apples-awe-dropping-2025-event/articleshow/123767438.cms
  7. Apple debuts thinner, $999 iPhone Air at ‘awe-dropping’ annual product event, accessed on September 13, 2025, https://www.theguardian.com/technology/2025/sep/09/apple-iphone-17
  8. Apple | The Guardian, accessed on September 13, 2025, https://www.theguardian.com/technology/apple
  9. iPhone Air: Everything We Know | MacRumors, accessed on September 13, 2025, https://www.macrumors.com/roundup/iphone-air/
  10. Introducing iPhone Air, a powerful new iPhone with a breakthrough design – Apple, accessed on September 13, 2025, https://www.apple.com/newsroom/2025/09/introducing-iphone-air-a-powerful-new-iphone-with-a-breakthrough-design/
  11. The iPhone 17, Air and everything else revealed at the Apple Event, accessed on September 13, 2025, https://www.washingtonpost.com/technology/2025/09/09/apple-event-2025-iphone-17-pro-air/
  12. iPhone 17 series pre-orders start today: Offers, how and where to pre-book, price and other things you should know about new Apple iPhones, accessed on September 13, 2025, https://timesofindia.indiatimes.com/technology/tech-news/iphone-17-series-pre-orders-start-today-discounts-how-and-where-to-pre-book-price-and-other-things-you-should-know-about-new-apple-iphones/articleshow/123851693.cms
  13. Cybersecurity News, Insights and Analysis | SecurityWeek, accessed on September 13, 2025, https://www.securityweek.com/
  14. The Cybersecurity Battleground: September 2025’s Most Critical …, accessed on September 13, 2025, https://breached.company/the-cybersecurity-battleground-september-2025s-most-critical-threats/
  15. New compromised packages identified in largest npm attack in history – JFrog, accessed on September 13, 2025, https://jfrog.com/blog/new-compromised-packages-in-largest-npm-attack-in-history/
  16. “Crypto Heist of the Century: Billions of JavaScript Downloads Tainted in Massive Supply Chain Hack” | Comsure, Jersey, accessed on September 13, 2025, https://www.comsuregroup.com/news/crypto-heist-of-the-century-billions-of-javascript-downloads-tainted-in-massive-supply-chain-hack/
  17. npm Attack Hits 18 Packages With 2B Weekly Downloads – eSecurity Planet, accessed on September 13, 2025, https://www.esecurityplanet.com/news/npm-packages-hijacked-crypt-stealing/
  18. The npm incident frightened everyone, but ended up being nothing to fret about, accessed on September 13, 2025, https://cyberscoop.com/open-source-npm-package-attack/
  19. Widespread npm Supply Chain Attack: Breaking Down Impact & Scope Across Debug, Chalk, and Beyond | Wiz Blog, accessed on September 13, 2025, https://www.wiz.io/blog/widespread-npm-supply-chain-attack-breaking-down-impact-scope-across-debug-chalk
  20. Data Act | Shaping Europe’s digital future, accessed on September 13, 2025, https://digital-strategy.ec.europa.eu/en/policies/data-act
  21. EU Data Act: What enterprises need to know as data portability becomes law – TechInformed, accessed on September 13, 2025, https://techinformed.com/eu-data-act-what-enterprises-need-to-know/
  22. EU Data Act: An Overview – McCann FitzGerald, accessed on September 13, 2025, https://www.mccannfitzgerald.com/knowledge/data-privacy-and-cyber-risk/eu-data-act-an-overview
  23. Business-to-Consumer Impact of the EU Data Act | Insights | Ropes & Gray LLP, accessed on September 13, 2025, https://www.ropesgray.com/en/insights/viewpoints/102ix8l/business-to-consumer-impact-of-the-eu-data-act
  24. EU Data Act Significant New Switching Requirements Due to Take Effect for Data Processing Services – Latham & Watkins LLP, accessed on September 13, 2025, https://www.lw.com/en/insights/eu-data-act-significant-new-switching-requirements-due-to-take-effect-for-data-processing-services
  25. EU Data Act – Bird & Bird, accessed on September 13, 2025, https://www.twobirds.com/en/trending-topics/eu-data-act
  26. EU proposal to scan private messages gains support | Digital Watch Observatory, accessed on September 13, 2025, https://dig.watch/updates/eu-proposal-to-scan-private-messages-gains-support
  27. News Archive | September 2025 – TechRadar, accessed on September 13, 2025, https://www.techradar.com/news/archive
  28. Proposed chat control measures: risks to privacy and encrypted communications | E-003249/2025 | European Parliament, accessed on September 13, 2025, https://www.europarl.europa.eu/doceo/document/E-10-2025-003249_EN.html
  29. Explainer: The EU’s Chat Control Legislation | ExpressVPN Blog, accessed on September 13, 2025, https://www.expressvpn.com/blog/eu-chat-control-legislation/
  30. Chat Control: The EU’s CSAM scanner proposal – Patrick Breyer, accessed on September 13, 2025, https://www.patrick-breyer.de/en/posts/chat-control/
  31. Regulation to Prevent and Combat Child Sexual Abuse – Wikipedia, accessed on September 13, 2025, https://en.wikipedia.org/wiki/Regulation_to_Prevent_and_Combat_Child_Sexual_Abuse
  32. DOE Opportunity to Lease INL Land for AI Data Centers and …, accessed on September 13, 2025, https://www.hklaw.com/en/insights/publications/2025/09/doe-opportunity-to-lease-inl-land-for-ai-data-centers
  33. Energy, Data Centers, and the Trump Administration’s AI Action Plan: A Strategic Guide to New Programs and Policies – Nelson Mullins, accessed on September 13, 2025, https://www.nelsonmullins.com/insights/alerts/megawatt-minute/all/energy-data-centers-and-the-trump-administration-s-ai-action-plan-a-strategic-guide-to-new-programs-and-policies
  34. DOE Announces Site Selection for AI Data Center and Energy Infrastructure Development on Federal Lands, accessed on September 13, 2025, https://www.energy.gov/articles/doe-announces-site-selection-ai-data-center-and-energy-infrastructure-development-federal
  35. Trump EO, DOE Site Selections Accelerate AI & Data Center Development, accessed on September 13, 2025, https://www.pillsburylaw.com/en/news-and-insights/AI-data-center-DOE-site-trump.html
  36. ACM TechNews, accessed on September 13, 2025, https://technews.acm.org/
  37. CISA Releases Eleven Industrial Control Systems Advisories | CISA, accessed on September 13, 2025, https://www.cisa.gov/news-events/alerts/2025/09/11/cisa-releases-eleven-industrial-control-systems-advisories
  38. Global Startup Funding In August Fell To Lowest Monthly Total In 8 …, accessed on September 13, 2025, https://news.crunchbase.com/venture/data-global-monthly-funding-august-2025/
  39. After The Funding: Atlanta’s Speedchain Sees New Growth As …, accessed on September 13, 2025, https://hypepotamus.com/news/speedchain-atlanta-111-million-funding-round/
  40. The Week’s 10 Biggest Funding Rounds: Ramp Ramps Up While AI And Healthcare Hold Strong – Crunchbase News, accessed on September 13, 2025, https://news.crunchbase.com/venture/biggest-funding-rounds-ramp-maplight/
  41. Southeast Startup News From The Week Of September 8-12, 2025 …, accessed on September 13, 2025, https://hypepotamus.com/startup-news/friday-fund-day-september-12-2025/
  42. How major US stock indexes fared Friday, 9/12/2025, accessed on September 13, 2025, https://apnews.com/article/wall-street-stocks-dow-nasdaq-b5b4752c3a2cb8fe2c795e430ba06a60
  43. MSD Weekly Market Update: Week Ending September 12, 2025 – Federal Home Loan Bank of New York, accessed on September 13, 2025, https://www.fhlbny.com/w/fi/msd/2025/250912
  44. NAGA Weekly Recap September 8 – 12, 2025, accessed on September 13, 2025, https://naga.com/en/news-and-analysis/articles/weekly-market-recap-stocks-oil-gold-dollar-september-2025
  45. Tech Stocks Plunge in September 2025: Nvidia Down 12%, Healthy Reset Ahead, accessed on September 13, 2025, https://www.webpronews.com/tech-stocks-plunge-in-september-2025-nvidia-down-12-healthy-reset-ahead/
  46. Global venture capital in 2025: A bifurcating market – Alter Domus, accessed on September 13, 2025, https://alterdomus.com/insight/global-venture-capital-in-2025-a-bifurcating-market/
  47. 48 Venture Capital Statistics in 2025, accessed on September 13, 2025, https://www.konvoy.vc/blogs/48-venture-capital-statistics-in-2025

Authors

Comments

Scroll to Top