Governance, Risk & Compliance – Australian Cyber Security Magazine Australia’s Leading Cyber Security Magazine
- Australians more concerned about privacy as trust in AI remains low, OAIC survey finds
by Editorial Team on May 28, 2026 at 1:57 amA large majority of Australians say they are more concerned about privacy than they were five years ago, according to a new survey released by the Office of the Australian […]
- ASD warns of device code phishing as Proofpoint tracks growing criminal toolkitsby Editorial Team on May 20, 2026 at 11:38 pm
The Australian Signals Directorate (ASD) has issued a public warning to Microsoft 365 users about device code phishing, saying it has received a number of reports of Australian users being […]
- Rapid7 analysis flags Cisco and Palo Alto authentication bypass vulnerabilitiesby Editorial Team on May 15, 2026 at 1:55 am
Rapid7 has published analysis of two newly disclosed authentication bypass vulnerabilities affecting enterprise networking and security platforms from Cisco and Palo Alto Networks, with both vendors urging organisations to patch […]
- Queensland education breach highlights third-party cyber risk concernsby Editorial Team on May 7, 2026 at 4:00 am
A third-party data breach disclosed by the Queensland Department of Education has renewed scrutiny on cyber risks tied to vendors and online learning platforms used across the education sector. In […]
- Report warns Australian AI agent adoption is outpacing security controlsby Editorial Team on May 6, 2026 at 12:01 am
Australian organisations are moving to deploy AI agents faster than they can secure them, with 88 per cent expecting autonomous systems to outpace their security safeguards within the next 12 […]
- Arxis implements APRA-aligned resilience framework for Credit Union SAby Editorial Team on May 5, 2026 at 2:05 am
Arxis says it has implemented an APRA-aligned operational resilience framework for Credit Union SA, as mutuals and other smaller financial institutions face growing regulatory and cyber security expectations without the […]
- APRA calls for step-change in AI risk management across financial sectorby Editorial Team on April 30, 2026 at 11:15 pm
The Australian Prudential Regulation Authority (APRA) has urged banks, insurers and superannuation trustees to lift how they manage artificial intelligence-related risks, warning that current governance and operational practices are not […]
- Semperis expands Purple Knight identity assessment tool with government cloud supportby Editorial Team on April 24, 2026 at 3:43 am
Semperis has announced expanded capabilities for Purple Knight, its free Active Directory and Entra ID security assessment tool, positioning the update as relevant to organisations seeking to align identity security […]
- NSW Government declares significant cyber incident after alleged Treasury data breachby Editorial Team on April 23, 2026 at 6:21 am
The NSW Government has declared a significant cyber incident following an alleged data breach involving a NSW Treasury staff member. Internal security monitoring detected a suspected transfer to an external […]
- OAIC issues draft Childrenās Online Privacy Code for public consultationby Editorial Team on March 31, 2026 at 12:42 am
The Office of the Australian Information Commissioner (OAIC) has published an exposure draft of the Childrenās Online Privacy Code, proposing new requirements for agencies and organisations to consider childrenās best […]
- Compliance vs capability: an opinion on what actually protects youby ACSM_Accro on March 26, 2026 at 12:17 am
By Raif Al Bedewi A professor I deeply respect, Prof. Atif Ahmad at the University of Melbourne, once told me something that stuck. āCompliance checks if you have the right […]
- Australian healthcare industry most targeted, followed by manufacturingby ACSM_Accro on February 20, 2026 at 2:20 am
Healthcare services was the most targeted industry in Australia in the second half of 2025, according to the latestĀ OT and IoT Security ReportĀ from Nozomi Networks Labs. The report found that […]
- Australia and APAC in Scope as OT Threats Matureby ACSM_Accro on February 18, 2026 at 6:00 am
Dragos has identified a shift from reconnaissance to operationally focused cyber activity across industrial infrastructure, alongside a sharp increase in ransomware activity affecting operational technology (OT) environments. In itsĀ 2026 OT/ICS […]
- Growth in Data Extortion Incidents and Continued Dominance of Ransomwareby ACSM_Accro on February 18, 2026 at 5:25 am
Arctic Wolf has reported an 11-fold increase in data-only extortion incidents over the past year, alongside the continued dominance of ransomware, according to its 2026 Threat Report. TheĀ report, based on […]
- Inconsistent action leaving children exposed to online sexual exploitationby ACSM_Accro on February 5, 2026 at 12:51 am
UNICEF Australia has warned that inconsistent action by technology companies is leaving children exposed to online sexual exploitation, following the release of the eSafety Commissionerās latest transparency report on Basic […]
- Government Cyber Security Showcase Victoria 2026by ACSM_Accro on February 2, 2026 at 12:43 am
Registrations have opened for the Government Cyber Security Showcase Victoria 2026, a one-day event aimed at helping public sector leaders address accelerating cyber threats and strengthen whole-of-government resilience as digital […]
- Command injection in Apache bRPC heap profilerby ACSM_Accro on January 29, 2026 at 2:52 am
The CyberArk Labs team have identified Apache bRPC users are exposed to a critical command injection flaw in the /pprof/heap endpoint (CVEā2025ā60021, CVSS 9.8) that enables unauthenticated remote code execution […]
- Network Attacks Outpace Malware in Australiaby ACSM_Accro on January 29, 2026 at 2:43 am
Australian businesses are now facing significantly more network-based attacks than traditional malware, according to WatchGuard Technologiesā Q4 2025 Threat Landscape Report, highlighting a marked shift in the countryās cyber threat […]
- Analysis of Poland electricity sector attackby ACSM_Accro on January 29, 2026 at 1:25 am
Dragos has released a detailed threat intelligence report providing the first in-depth operational technology (OT) security analysis of the 29 December cyberattack on Polandās electric sector, offering new insights beyond […]
- Automated decision-making and public reporting under the Freedom of Information Actby ACSM_Accro on January 21, 2026 at 1:30 am
The Office of the Australian Information Commissioner (OAIC) has released a new report examining how transparently Australian Government agencies disclose their use of automated decision-making under the Freedom of Information […]
