惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

V
Vulnerabilities – Threatpost
V
V2EX
GbyAI
GbyAI
Recent Announcements
Recent Announcements
Microsoft Security Blog
Microsoft Security Blog
阮一峰的网络日志
阮一峰的网络日志
Hugging Face - Blog
Hugging Face - Blog
T
Tailwind CSS Blog
Y
Y Combinator Blog
C
Check Point Blog
爱范儿
爱范儿
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
美团技术团队
雷峰网
雷峰网
IT之家
IT之家
WordPress大学
WordPress大学
V
Visual Studio Blog
Microsoft Azure Blog
Microsoft Azure Blog
MyScale Blog
MyScale Blog
N
News and Events Feed by Topic
罗磊的独立博客
S
SegmentFault 最新的问题
S
Security Affairs
aimingoo的专栏
aimingoo的专栏
F
Fortinet All Blogs
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
H
Hacker News: Front Page
Google DeepMind News
Google DeepMind News
B
Blog
O
OpenAI News
C
Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
The Last Watchdog
The Last Watchdog
Hacker News: Ask HN
Hacker News: Ask HN
博客园_首页
人人都是产品经理
人人都是产品经理
C
Cybersecurity and Infrastructure Security Agency CISA
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Help Net Security
Help Net Security
月光博客
月光博客
J
Java Code Geeks
L
LangChain Blog
博客园 - 司徒正美
Stack Overflow Blog
Stack Overflow Blog
Security Archives - TechRepublic
Security Archives - TechRepublic
Apple Machine Learning Research
Apple Machine Learning Research
T
The Exploit Database - CXSecurity.com
N
News and Events Feed by Topic
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More

Security

Scope Systems confirms cyber incident, says no data loss occurred Instructure breach: ShinyHunters says ‘matter has been resolved’ Rapid7 launches Cyber GRC program to connect compliance with live risk data Australian federal budget 2026: The industry perspective Op-Ed: Microsoft May Patch Tuesday reveals 137 vulnerabilities Federal Budget 2026: The state of cyber security spending for the coming year OpenAI offers EU early access to its cyber security model Exclusive: Aussie firm Earth Systems listed by INC Ransom hacking group Op-Ed: Why Middle East tensions demand immediate action on OT security Aussie schools breach: Instructure boss “reaches agreement” with ShinyHunters to not release data Institute of Public Accountants members hit by data breach Union demands answers on Qantas AI plans 1 in 3 small businesses don't think they're a cyber target, new research finds Exclusive: Aussie toy distributor listed by M3rx ransomware Exclusive: Australian Computer Society investigating possible breach after ShinyHunters hack claims The industry speaks – part 2: World Password Day 2026 Aussie schools breach: The Instructure hack “transcends an isolated IT incident” Exclusive: Aussie car part importer Strategic Imports allegedly breached by threat actors New South Wales, other states, investigating Instructure/Canvas data breach Australian Cyber Security Centre warns of ClickFix campaign leveraging Australian infrastructure Queensland Department of Education confirms students & staff impacted by ShinyHunters data breach ACMA takes action against SpinTel & Yomojo over mobile number fraud violations The Industry Speaks, Part 1: World Password Day 2026 Qualys and Converge tie cyber insurance pricing to real-time security posture Fakeout: Iranian APT caught hiding behind Chaos ransomware activity Exclusive: Australian energy management firm allegedly breached by SafePay Real estate giant Cushman & Wakefield confirms cyber incident, Qilin and ShinyHunters claim attack CrowdStrike expands Project QuiltWorks as more partners join AI security coalition Hacked: ALS discloses cyber incident, unauthorised access to IT systems Microsoft the main target of AI phishing attacks, report uncovers Attackers increasingly turning to trusted security tools to compromise Aussie victims Exclusive: Champion Homes confirms customer data compromised in “cyber event” Australia, Japan commit to partnership to meet cyber security challenges & strengthen cyber defences NSW Treasury cyber incident contained, impact no longer ‘significant’ WA rental scam surge: Tenants targeted with fake $500 discount trap Aussie Information Commissioner launches Privacy Awareness Week 2026 Unregistered branded text messages to be labelled ‘Unverified’ from 1 July Exclusive: Major Australian jewellery brand confirms cyber incident Watch this! Komari server monitor tool abused by hackers Act Now! ACSC warns of active exploitation of cPanel & WHM critical vulnerability Exclusive: Kiwi electrical contractor confirms cyber attack Exclusive: Prime Properties listed as breach victim by M3rx ransomware DigiCert launches AI Trust architecture to secure agents, models, and content Winners of the 2026 Australian Cyber Awards unveiled Op-Ed: Redefining performance in the AI-powered SOC NZ council cyber attack leads to ID and financial data being exposed Alert! Wave of fake toll, parking scams impacting countries worldwide, including Australia and New Zealand Vect unveiled: Inside an emerging ransomware group’s affiliate network Exclusive: Gelatissimo confirms unauthorised access, investigates DragonForce hack claims Aussie ice-cream franchise Gelatissimo suffers alleged hack by DragonForce Anthropic Mythos: The model, the myth and the mundane​ Report: Aussie small businesses doing it tough as job scams double, losses rise Cyber attacks on medical devices pose ‘significant’ impact on real-life patient care Twisted Firestarter! Aussie, US, and UK cyber agencies warn of Cisco malware campaign Generation Life informs customers of “cyber incident” as owner shares incident with ASX CBA launches new scam-finding AI agent Sri Lankan government hack sees $3.7m destined for Australia stolen CrowdStrike extends cloud threat detection to Google Cloud Hey big spender! Microsoft to invest $25bn in Australian AI infrastructure Genetec marks Sydney milestone with visit by high commissioner of Canada to Australia Rental platform under fire for collecting excessive personal data Exclusive: SA genealogical research firm confirms cyber incident following SafePay ransom claims PentenAmio announces acquisition of Armour Communications Exclusive: Aussie passports compromised in alleged Favelle Favco data breach Cutting edge: Anthropic’s Claude Mythos preview is a ‘double-edged sword’, expert says Treasury staffer charged for NSW government data breach Op-Ed: AI won’t patch the holes in your SOC Game on! More than a third of FIFA World Cup 2026 partners expose Aussies to email fraud risk Dark web markets: A complete Aussie identity costs as little as $200 Exclusive: NSW-based Strata Republic allegedly breached by Kairos ransomware group Mortgage fraud now harder to detect thanks to AI McGraw Hill confirms ShinyHunters breach, won’t confirm if any Aussie customers impacted Update now: Active exploitation of Nginx UI vulnerability CVE-2026-33032 underway National Defence Strategy 2026: Spending on military cyber capability to reach at least $15bn Exclusive: Qld pharmacy chain allegedly breached by Kairos ransomware Op-Ed: ASIO has broken its silence on cyber crime, and you should listen Too-hard basket: NIST to scale back CVE updates as vulnerabilities soar OpenAI launches GPT 5.4-Cyber in response to Anthropic Glasswing NZ racehorse auction stalled by cyber attack Op-Ed: Microsoft April Patch Tuesday reveals 167 vulnerabilities ADF joins international military exercise focused on cyber resilience and multi-domain operations OpenAI CEO’s home targeted in attempted drive-by just days after Molotov attack Exclusive: Aussie communications company Mastercom ‘aware’ of INC Ransom claims Booking.com confirms cyber incident, customer reservation data potentially compromised Report: Majority of CISOs not ready for the next big cyber attack Why Anthropic’s Project Glasswing matters, and what CISOs need to know WASTED! GTA developer Rockstar Games confirms hack as ShinyHunters demands ‘pay or leak’ Exclusive: Gunra ransomware lists Eric Davis Dental as breach victim Op-Ed: Why zero trust for OT should start at the boundary, not the boiler room Exclusive: NSW pharmacy management firm allegedly breached by INC Ransom US Treasury launches intelligence-sharing initiative with crypto companies Citigroup says AI speeds up new account openings Cyber war: Pro-Iranian hackers vow to fight on despite a fragile ceasefire with the US Exclusive: Victorian resort hotel allegedly breached by Space Bears ransomware Game on! Nationwide student competition aims to tackle Australia’s cyber skills gap Exclusive: Anubis ransomware gang claims hack of WA-based Shine Aviation Ransomware group claims hack of legal giant Jones Day Anthropic, partners announce Project Glasswing cyber security initiative Exclusive: Aussie tech firm Seeing Machines confirms potential cyber security incident Space Bears claims cyber attack on Sydney dental clinic
Op-Ed: Why organised crime is adapting faster than AI governance
Keith Bulfin · 2026-05-29 · via Security

Cyber criminals are operating at levels of complexity and maturity that many are unaware of – here’s what you need to know about organised cyber crime and how it stays ahead of defenders and law enforcement.

Around the world, organisations are investing unprecedented amounts into artificial intelligence, cyber capability, compliance systems, governance frameworks, and financial crime detection technology.

Yet despite this enormous investment, illicit financial flows continue growing globally at staggering levels.

You’re out of free articles for this month

To continue reading the rest of this article, please log in.

This raises an uncomfortable question: Why are organised criminal systems still adapting faster than the institutions attempting to stop them?

The answer may not lie in a lack of technology.

It may lie in the growing gap between detecting suspicious activity and understanding adaptive criminal behaviour operating behind increasingly sophisticated financial and cyber-enabled systems.

Across banking, cyber security, governance, and compliance environments, institutions are increasingly becoming overwhelmed by alerts, anomalies, fragmented intelligence, transactional noise, and endless reporting requirements.

Criminal systems understand this. In many ways, modern financial crime environments now resemble adaptive corporate ecosystems more than traditional criminal organisations.

These networks:

• test systems continuously,
• identify operational blind spots,
• exploit jurisdictional seams,
• leverage AI themselves,
• and evolve behaviourally faster than institutional structures traditionally adapt.

This creates what I increasingly describe as the “operational interpretation gap”.

Technology can detect anomalies. Humans still need to interpret intent. That distinction is becoming critically important globally.

In many modern financial crime cases, the transaction itself may appear entirely legitimate.

The real issue is understanding the behavioural architecture operating behind the movement.

I encountered this repeatedly during operational financial investigations involving international syndicates moving funds across multiple jurisdictions through layered commercial structures.

In one case, a syndicate borrowed substantial funds through what initially appeared to be legitimate commercial lending arrangements. However, the underlying capital originated offshore, was circulated through multiple financial structures, repaid strategically, and ultimately transferred through Dubai-based channels, where the funds were effectively cleaned and reintroduced into broader commercial systems.

From a pure transactional perspective, many movements appeared lawful.

The operational question was different: Why was the structure created? Who controlled the behavioural movement behind the transactions? What broader network sat behind the activity?

Those questions often matter far more than the transaction itself. This is one of the major limitations now emerging globally inside heavily automated governance environments.

Most systems are designed to identify:

• irregularities,
• anomalies,
• reporting triggers,
• sanctions indicators,
• or behavioural deviations from known patterns.

But sophisticated criminal systems increasingly operate inside the grey space between:

• legitimacy,
• jurisdiction,
• technology,
• governance,
• and behavioural adaptation.

Increasingly, organised criminal groups are no longer isolated gangs. They now operate like multinational adaptive corporations. Many maintain:

• cyber teams,
• finance divisions,
• legal structures,
• shell companies,
• operational security capability,
• recruiters,
• payroll systems,
• and sophisticated digital infrastructure.

Some human trafficking and cyber scam compounds operating throughout parts of Asia now function with corporate-style management structures involving:

• recruitment divisions,
• social media targeting,
• crypto payment systems,
• internal enforcement teams,
• and sophisticated financial laundering pathways.

The scale is staggering. Yet many institutions continue approaching these systems through fragmented compliance structures designed for an earlier criminal environment.

Artificial intelligence unquestionably provides extraordinary capability. However, one of the growing risks now emerging globally is the assumption that increased automation automatically equals increased understanding.

It does not. AI can identify patterns at extraordinary speed. But criminal systems increasingly focus on something far older and far more dangerous:

Human behaviour.

They understand:

• fear,
• urgency,
• greed,
• trust,
• vulnerability,
• and institutional fatigue.

They also understand that many organisations are now overwhelmed operationally by the sheer volume of alerts and data generated daily.

The system becomes exhausted by noise. Criminal systems know this.

The future challenge for CISOs, governance leaders, operational intelligence professionals, and financial crime investigators may therefore not simply be:

“How do we collect more data?”

The real question increasingly becomes:

“How do we interpret adaptive intent operating inside increasingly sophisticated financial and cyber-enabled systems?”

This is where operational intelligence, behavioural interpretation, and human judgement become critically important.

The organisations that adapt successfully over the next decade are unlikely to be those relying solely on automation.

They will be the organisations capable of combining:

• AI capability,
• operational intelligence,
• behavioural interpretation,
• governance oversight,
• strategic investigation,
• and human judgement.

Because while technology continues scaling detection capability globally, organised criminal systems continue scaling adaptation.


Keith Bulfin is the founder of the Applied Financial Intelligence Programme and author of the bestselling book “Undercover”. His background includes work across global financial intelligence, organised crime investigations, illicit finance systems, and operational intelligence environments involving international agencies and investigations.

Cyber DailyWant to see more stories from trusted news sources?
Make Cyber Daily a preferred news source on Google.