Expert analysis and latest developments in Australian cybersecurity
The amended Cyber Security Act 2026 introduces mandatory ransomware payment reporting, expanded critical infrastructure obligations, and new personal liability for directors. Here's what your business needs to action immediately.
The Salt Typhoon APT group — responsible for last year's US telco compromises — has shifted focus to Australian telecommunications providers. ASD and CISA have issued a joint advisory urging immediate action.
April's Patch Tuesday delivers fixes for 134 vulnerabilities including a wormable LDAP remote code execution flaw rated CVSS 9.8. Australian organisations on unpatched systems are at immediate risk.
The landmark Medibank settlement sets a new precedent for corporate liability following a data breach in Australia. Legal experts weigh in on what this means for boards, CISOs, and the insurance landscape.
Security researchers are documenting the first wave of attacks orchestrated by autonomous AI agents — tools that can probe networks, write exploits, and evade detection without human direction. Australia is not immune.
A critical authentication bypass in FortiGate SSL-VPN (CVE-2026-0847) is being actively exploited by multiple threat actors targeting APAC organisations. ASD has confirmed Australian victims. Patch urgently.
The Australian Signals Directorate's 2026 maturity assessment reveals that only 31% of organisations have achieved Maturity Level Two across all eight controls. We break down the gaps and what to prioritise.
Australia's biennial Essential Eight maturity assessment reveals significant gaps persist. Application control and restricting admin privileges remain the weakest points across almost every sector.
February's security update patches 112 vulnerabilities including a critical Microsoft Outlook zero-day (CVE-2026-0167) that has been exploited by APT groups in spear-phishing campaigns against Australian law firms and government contractors.
Critical Microsoft Outlook zero-day CVE-2026-0167 confirmed exploited by APT groups targeting Australian law firms and government contractors. Patch the preview-pane vulnerability immediately.
Q1 2026 saw a 34% increase in ransomware incidents across Australia, with healthcare providers and local councils disproportionately targeted. Qilin and BlackSuit ransomware groups dominate the threat landscape.
Analysis of the coordinated exploitation campaigns targeting Ivanti Connect Secure and FortiOS SSL-VPN vulnerabilities affecting Australian organisations.
Updated analysis of the ongoing BadCandy implant campaign targeting unpatched Cisco devices across Australia, with new indicators of compromise.
Microsoft's January 2026 security update addresses critical Exchange Server RCE and 67 other vulnerabilities. Immediate patching recommended.
Deep dive into the Murky Panda campaign exploiting misconfigured cloud services across Australian government and enterprise environments.
Analysis of the January 2026 ransomware attack on Loyola College and cybersecurity implications for Australian schools and universities.
Latest developments in the Snowflake data breach case with a second arrest and new details on how 160+ organisations were compromised.
Comprehensive analysis of major cyber incidents in 2025 including Internet Archive, MOVEit aftermath, and emerging ransomware trends.
What Australian businesses can learn from the CrowdStrike, Okta, and other supply chain incidents of 2025.
Updated analysis of cyber threats targeting Australian manufacturing, including JLR and other recent incidents.
Expert predictions on emerging threats, regulatory changes, and technologies shaping Australia's cybersecurity landscape in 2026.
Complete implementation guide for the Australian Cyber Security Centre's Essential Eight framework with 2026 updates.
Updated comprehensive ranking and analysis of Australia's leading managed cybersecurity providers for 2026.
How artificial intelligence is revolutionising both attack and defence capabilities in the cybersecurity landscape.
Understanding modern ransomware threats, prevention strategies, and response plans for Australian organisations.
Expert review of top cybersecurity tools and platforms suited for Australian business needs, updated for 2026.
Latest data breach trends, costs, and impact analysis for Australian businesses based on OAIC reports.
Essential cybersecurity strategies for Australian businesses managing remote and hybrid workforces in 2026.
How Australian businesses can protect themselves from supply chain cyber attacks and vendor security risks.
How quantum computing will impact cybersecurity and what Australian businesses need to know.
Clear breakdown of cybersecurity and IT security distinctions for business leaders.
Essential cloud security strategies and best practices for Australian businesses.
Showing 8 of 50+ articles