This weekly update covers major developments in data privacy and security, with a strong focus on artificial intelligence agents and the risks they create. As organizations worldwide adopt AI tools, security experts are sounding alarms about how these smart systems can accidentally expose sensitive information like medical records, passwords, and social security numbers.

One of the biggest stories this week is the explosion of AI security incidents in January 2026. Researchers found that multiple serious attacks targeted AI systems used by major companies, with many incidents involving agent abuse and prompt injection attacks—tricks that make AI systems do things they shouldn't do. The scale of the problem is massive: ChatGPT alone had over 410 million security violations in 2025, many involving attempts to share private information.

Governments and regulators are responding quickly. Data Privacy Day on January 28 highlighted how new laws in California, Texas, and other places are now requiring companies to explain how they use AI and automated decision-making. The European Union's new AI Act will force companies to carefully track how they use artificial intelligence starting in August 2026.

Organizations worldwide are taking notice. Research shows that 90% of companies have expanded their privacy programs because of AI risks, and 82% are planning to add AI systems to their security operations. The common message from security experts is clear: AI governance is no longer optional—it's now essential for protecting customer data and avoiding expensive security breaches.