惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Vercel News
Vercel News
Recorded Future
Recorded Future
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
The GitHub Blog
The GitHub Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Google DeepMind News
Google DeepMind News
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Microsoft Azure Blog
Microsoft Azure Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
M
MIT News - Artificial intelligence
云风的 BLOG
云风的 BLOG
Y
Y Combinator Blog
N
News | PayPal Newsroom
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Help Net Security
Help Net Security
博客园 - Franky
SecWiki News
SecWiki News
Recent Announcements
Recent Announcements
T
Troy Hunt's Blog
The Register - Security
The Register - Security
The Last Watchdog
The Last Watchdog
Webroot Blog
Webroot Blog
S
Security Affairs
博客园 - 司徒正美
S
Schneier on Security
I
InfoQ
博客园_首页
www.infosecurity-magazine.com
www.infosecurity-magazine.com
T
Threat Research - Cisco Blogs
Forbes - Security
Forbes - Security
腾讯CDC
N
Netflix TechBlog - Medium
N
News and Events Feed by Topic
Cloudbric
Cloudbric
T
The Exploit Database - CXSecurity.com
P
Proofpoint News Feed
A
About on SuperTechFans
Engineering at Meta
Engineering at Meta
Recent Commits to openclaw:main
Recent Commits to openclaw:main
B
Blog
V
Vulnerabilities – Threatpost
C
Check Point Blog
Google DeepMind News
Google DeepMind News
Google Online Security Blog
Google Online Security Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
Hacker News - Newest:
Hacker News - Newest: "LLM"
C
Cisco Blogs
Schneier on Security
Schneier on Security
O
OpenAI News
K
Kaspersky official blog

Security

Report: Business email compromise attacks surged dangerously in April Scope Systems confirms cyber incident, says no data loss occurred Instructure breach: ShinyHunters says ‘matter has been resolved’ Rapid7 launches Cyber GRC program to connect compliance with live risk data Australian federal budget 2026: The industry perspective Op-Ed: Microsoft May Patch Tuesday reveals 137 vulnerabilities Federal Budget 2026: The state of cyber security spending for the coming year OpenAI offers EU early access to its cyber security model Exclusive: Aussie firm Earth Systems listed by INC Ransom hacking group Op-Ed: Why Middle East tensions demand immediate action on OT security Aussie schools breach: Instructure boss “reaches agreement” with ShinyHunters to not release data Institute of Public Accountants members hit by data breach Union demands answers on Qantas AI plans 1 in 3 small businesses don't think they're a cyber target, new research finds Exclusive: Aussie toy distributor listed by M3rx ransomware Exclusive: Australian Computer Society investigating possible breach after ShinyHunters hack claims The industry speaks – part 2: World Password Day 2026 Aussie schools breach: The Instructure hack “transcends an isolated IT incident” Exclusive: Aussie car part importer Strategic Imports allegedly breached by threat actors New South Wales, other states, investigating Instructure/Canvas data breach Australian Cyber Security Centre warns of ClickFix campaign leveraging Australian infrastructure Queensland Department of Education confirms students & staff impacted by ShinyHunters data breach ACMA takes action against SpinTel & Yomojo over mobile number fraud violations The Industry Speaks, Part 1: World Password Day 2026 Qualys and Converge tie cyber insurance pricing to real-time security posture Fakeout: Iranian APT caught hiding behind Chaos ransomware activity Exclusive: Australian energy management firm allegedly breached by SafePay Real estate giant Cushman & Wakefield confirms cyber incident, Qilin and ShinyHunters claim attack CrowdStrike expands Project QuiltWorks as more partners join AI security coalition Hacked: ALS discloses cyber incident, unauthorised access to IT systems Microsoft the main target of AI phishing attacks, report uncovers Attackers increasingly turning to trusted security tools to compromise Aussie victims Exclusive: Champion Homes confirms customer data compromised in “cyber event” Australia, Japan commit to partnership to meet cyber security challenges & strengthen cyber defences NSW Treasury cyber incident contained, impact no longer ‘significant’ WA rental scam surge: Tenants targeted with fake $500 discount trap Aussie Information Commissioner launches Privacy Awareness Week 2026 Unregistered branded text messages to be labelled ‘Unverified’ from 1 July Exclusive: Major Australian jewellery brand confirms cyber incident Watch this! Komari server monitor tool abused by hackers Act Now! ACSC warns of active exploitation of cPanel & WHM critical vulnerability Exclusive: Kiwi electrical contractor confirms cyber attack Exclusive: Prime Properties listed as breach victim by M3rx ransomware DigiCert launches AI Trust architecture to secure agents, models, and content Winners of the 2026 Australian Cyber Awards unveiled Op-Ed: Redefining performance in the AI-powered SOC NZ council cyber attack leads to ID and financial data being exposed Alert! Wave of fake toll, parking scams impacting countries worldwide, including Australia and New Zealand Vect unveiled: Inside an emerging ransomware group’s affiliate network Exclusive: Gelatissimo confirms unauthorised access, investigates DragonForce hack claims Aussie ice-cream franchise Gelatissimo suffers alleged hack by DragonForce Anthropic Mythos: The model, the myth and the mundane​ Report: Aussie small businesses doing it tough as job scams double, losses rise Cyber attacks on medical devices pose ‘significant’ impact on real-life patient care Twisted Firestarter! Aussie, US, and UK cyber agencies warn of Cisco malware campaign Generation Life informs customers of “cyber incident” as owner shares incident with ASX CBA launches new scam-finding AI agent Sri Lankan government hack sees $3.7m destined for Australia stolen CrowdStrike extends cloud threat detection to Google Cloud Hey big spender! Microsoft to invest $25bn in Australian AI infrastructure Genetec marks Sydney milestone with visit by high commissioner of Canada to Australia Rental platform under fire for collecting excessive personal data Exclusive: SA genealogical research firm confirms cyber incident following SafePay ransom claims PentenAmio announces acquisition of Armour Communications Exclusive: Aussie passports compromised in alleged Favelle Favco data breach Cutting edge: Anthropic’s Claude Mythos preview is a ‘double-edged sword’, expert says Treasury staffer charged for NSW government data breach Op-Ed: AI won’t patch the holes in your SOC Game on! More than a third of FIFA World Cup 2026 partners expose Aussies to email fraud risk Dark web markets: A complete Aussie identity costs as little as $200 Exclusive: NSW-based Strata Republic allegedly breached by Kairos ransomware group Mortgage fraud now harder to detect thanks to AI McGraw Hill confirms ShinyHunters breach, won’t confirm if any Aussie customers impacted Update now: Active exploitation of Nginx UI vulnerability CVE-2026-33032 underway National Defence Strategy 2026: Spending on military cyber capability to reach at least $15bn Exclusive: Qld pharmacy chain allegedly breached by Kairos ransomware Too-hard basket: NIST to scale back CVE updates as vulnerabilities soar OpenAI launches GPT 5.4-Cyber in response to Anthropic Glasswing NZ racehorse auction stalled by cyber attack Op-Ed: Microsoft April Patch Tuesday reveals 167 vulnerabilities ADF joins international military exercise focused on cyber resilience and multi-domain operations OpenAI CEO’s home targeted in attempted drive-by just days after Molotov attack Exclusive: Aussie communications company Mastercom ‘aware’ of INC Ransom claims Booking.com confirms cyber incident, customer reservation data potentially compromised Report: Majority of CISOs not ready for the next big cyber attack Why Anthropic’s Project Glasswing matters, and what CISOs need to know WASTED! GTA developer Rockstar Games confirms hack as ShinyHunters demands ‘pay or leak’ Exclusive: Gunra ransomware lists Eric Davis Dental as breach victim Op-Ed: Why zero trust for OT should start at the boundary, not the boiler room Exclusive: NSW pharmacy management firm allegedly breached by INC Ransom US Treasury launches intelligence-sharing initiative with crypto companies Citigroup says AI speeds up new account openings Cyber war: Pro-Iranian hackers vow to fight on despite a fragile ceasefire with the US Exclusive: Victorian resort hotel allegedly breached by Space Bears ransomware Game on! Nationwide student competition aims to tackle Australia’s cyber skills gap Exclusive: Anubis ransomware gang claims hack of WA-based Shine Aviation Ransomware group claims hack of legal giant Jones Day Anthropic, partners announce Project Glasswing cyber security initiative Exclusive: Aussie tech firm Seeing Machines confirms potential cyber security incident Space Bears claims cyber attack on Sydney dental clinic
Op-Ed: ASIO has broken its silence on cyber crime, and you should listen
2026-04-16 · via Security

Threats to Australian critical infrastructure are real, and developing – it’s time operators paid attention, according to Nozomi Networks’ Marty Rickard.

Australian intelligence agencies have been traditionally tight-lipped about potential threats. Public statements are kept to a minimum, only becoming public when it is deemed an absolute necessity.

Yet recently, the Director-General of the Australian Security Intelligence Organisation (ASIO), Mike Burgess, has made multiple public announcements about the very real cyber threats against Australian critical infrastructure.

You’re out of free articles for this month

To continue reading the rest of this article, please log in.

While many seem to not notice these warnings, the frequency at which the agency is publicly disclosing cyber threats should make anyone pause.

In July last year, Burgess warned foreign espionage was costing Australia at least $12.5 billion a year, with ASIO disrupting up to 24 significant attempts at espionage and foreign interference operations in recent years.

Then, in November 2025, the spy agency warned of nation-state actors continuously trying to infiltrate Australia’s critical infrastructure networks. Targeted industries include telecommunications, water, healthcare, manufacturing and energy industries. In fact, healthcare services have recently been identified as the most targeted industry in Australia.

The reality is, Australia is a target. It has its critical infrastructure networks in the crosshairs, so much so that in the second half of last year, Australia was ranked third in the number of security threats per organisation.

The threat actors targeting these industries are often highly sophisticated state-sponsored groups operating on behalf of countries like China, Iran, Russia and North Korea. Intelligence agencies track these advanced persistent threat (APT) groups under pseudonyms like Volt and Salt Typhoon, both of which are particularly prevalent in Australia.

The “persistent” in APT is key here. “Smash and grab” is not their modus operandi. These groups are covert, lurking undetected within networks for extended periods of time, gathering intelligence, stealing data and – ultimately – disrupting operations. Unlike threat actors looking to gain financial benefits from a cyber attack, APTs immerse themselves in a network so thoroughly that they can stay undetected for months or more.

A key tool in their arsenal is “living off the land” techniques – stolen credentials and legitimate admin tools used to hide in plain sight. Combating these tactics requires integrated visibility, identity hardening and network segmentation working together across both IT and operational technology domains to ensure there are no gaps to hide in.

Rather than using IT networks as their initial point of entry, these threat actors often first infiltrate critical networks through operational technology (OT) and internet of things (IOT) devices.

Most of Australia’s critical infrastructure organisations are dependent on these technologies, which, unfortunately, often run on outdated systems. This makes them an attractive target for threat actors to initially infiltrate and develop a foothold, maintaining persistence, before moving laterally across the wider network.

As Burgess stated last year: “when they have penetrated your networks, they actively and aggressively map your systems, and seek to maintain persistent undetected access that enables them to conduct sabotage at a time and moment of their choosing”.

It is a method that has worked before. In 2024, a large number of American citizens had their data stolen when a threat actor targeted a United States telecommunications company.

In this case, the specific systems that were compromised, alongside the data stolen, have not been publicly disclosed. However, public reporting suggested Volt or Salt Typhoon had targeted the systems used to provide court-approved access to communication systems. These are used for investigations by law enforcement and intelligence agencies. In essence, a huge breach of privacy.

Australian organisations should be under no illusions when it comes to the severity of these nation-state actors and the lengths they are willing to go. The country has been warned its critical infrastructure networks are at their fingertips. This isn’t the first warning, nor will it be the last.

With legislation like the Security of Critical Infrastructure Act mandating critical infrastructure owners harden their defences, I am hopeful Australia will heed ASIO’s warnings before it is too late.

Doing so means critical infrastructure entities can develop better asset inventory across their network, reducing blind spots across OT and IOT environments, and favoured entry points used by APT groups.

It will also see organisations audit privileged access to limit lateral movement and “living off the land” techniques by these cyber criminals.

Crucially, it’s important that Australia’s critical organisations move from reacting to continuous monitoring; cyber criminals are happy to sit idle for months, making point-in-time assessments insufficient. Constant assessment and anomaly detection for specific behaviour is key to defending against threats designed to stay hidden.

A great sign that Australia is heading in the right direction is that cyber security investment is increasing, with Australian organisations expected to have spent $6.2 billion on information security and risk management in 2025. IT security is critical, but to ensure the security of the nation’s critical infrastructure assets, organisations must not forget operational technology and internet of things devices. After all, what use is locking the front door if you’ve left the windows wide open?

Cyber DailyWant to see more stories from trusted news sources?
Make Cyber Daily a preferred news source on Google.

Tags: