惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Vercel News
Vercel News
Recorded Future
Recorded Future
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
The GitHub Blog
The GitHub Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Google DeepMind News
Google DeepMind News
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Microsoft Azure Blog
Microsoft Azure Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
M
MIT News - Artificial intelligence
云风的 BLOG
云风的 BLOG
Y
Y Combinator Blog
N
News | PayPal Newsroom
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Help Net Security
Help Net Security
博客园 - Franky
SecWiki News
SecWiki News
Recent Announcements
Recent Announcements
T
Troy Hunt's Blog
The Register - Security
The Register - Security
The Last Watchdog
The Last Watchdog
Webroot Blog
Webroot Blog
S
Security Affairs
博客园 - 司徒正美
S
Schneier on Security
I
InfoQ
博客园_首页
www.infosecurity-magazine.com
www.infosecurity-magazine.com
T
Threat Research - Cisco Blogs
Forbes - Security
Forbes - Security
腾讯CDC
N
Netflix TechBlog - Medium
N
News and Events Feed by Topic
Cloudbric
Cloudbric
T
The Exploit Database - CXSecurity.com
P
Proofpoint News Feed
A
About on SuperTechFans
Engineering at Meta
Engineering at Meta
Recent Commits to openclaw:main
Recent Commits to openclaw:main
B
Blog
V
Vulnerabilities – Threatpost
C
Check Point Blog
Google DeepMind News
Google DeepMind News
Google Online Security Blog
Google Online Security Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
Hacker News - Newest:
Hacker News - Newest: "LLM"
C
Cisco Blogs
Schneier on Security
Schneier on Security
O
OpenAI News
K
Kaspersky official blog

Government

Qld government announces new digital project governance bodies Child protection advocates call for faster action on digital duty of care laws Cyber resilience a key plank of new Nakamal Agreement between Vanuatu and Australia ACMA targets SMS scams, emergency services, and telco protections in 2026–27 compliance agenda Exclusive: Pauline Hanson’s One Nation party quietly deletes Labor hacking claims Privacy Commissioner rules Medmate and Monash IVF breached privacy law through tracking pixels Australia’s Department of Parliamentary Services has only “partly effective” cyber security stature, audit finds Australian government, Microsoft sign agreement strengthening cyber security Tony Burke announces ‘new program of work’ under Horizon 2 of the Australian Cyber Security Strategy AFCA to become Australia’s central scams complaints body under new prevention framework Pentagon’s new Department of Defense Cyber Defense Command could be a good model for Australia Be counted: Australia’s next census faces cyber security shortcomings Aussie government proposes automatic reimbursement for scam losses below $3,000 ACCC welcomes another year of funding for the National Anti-Scam Centre Budget 2026: Expectations around AI, SMB resilience, and national defence Australia strengthens cyber defence in multinational operation New Zealand announces new sanctions against Russian cyber actors, online support platforms Op-Ed: Australia’s next budget must treat cyber resilience as essential infrastructure Australian government establishes new Cyber Incident Review Board US Department of War launches cyber-focused apprenticeship program Australian government stands up new ‘tripartite forum’ to tackle AI challenges in the workforce Australian Army research paper advocates for Australian national cyber reserve force, volunteer cyber organisations ADF strengthens skills as Cyber Command marks 2 years of operation Op-Ed: Australia inspired the EU’s online age restrictions, now it’s time for us to learn from them Latitude Financial faces $3.96m fine over spam law breaches Kid stuff: Roblox to introduce safety improvements following Aus government warnings Report: Aussie youth increasingly turning to AI for mental health advice First draft of Children’s Online Privacy Code made public Kids’ stuff: OAIC releases exposure draft of Children’s Online Privacy Code Aussie telco consumer code to be replaced in favour of ‘stronger protections’ Government proposes 5 changes to SOCI Act in overhaul of ministerial directions powers Cyber, defence cooperation key plank of new EU–Australia partnership Q&A: ‘Just be mindful that people are interested in you,’ says Sarah Sloan Trump releases US National Cyber Strategy CISO for Department of Health and Aged Care retires FIIG Fined: Federal Court orders $2.5M penalty for cyber security failures US CISA in a bad way as a new acting head is appointed Who is on the frontline when it comes to AI policymaking in Australia? Australian government unveils 5-year deal with Microsoft to lock in pricing and support AI adoption Australia, Samoa sign memorandum of understanding on cyber cooperation
Op-Ed: Australia’s cyber law is stuck in the past – the Slay Review is our chance to fix it
Chloe Harpley and Dr Huon Curtis · 2026-05-15 · via Government

The numbers are stark. In 2018, the average time between a software vulnerability being disclosed and an attacker weaponising it was 2.3 years. Today, it’s 20 hours.

Last month, Anthropic released Claude Mythos – an AI model capable of discovering zero-day vulnerabilities at scale, across every major operating system, faster than any human team. The physics of cyber threats have changed again, and the gap between attacker capability and defender readiness is widening faster than any legislative framework anticipated.

The Security of Critical Infrastructure Act (SOCI Act) was written in that earlier world, and it shows.

You’re out of free articles for this month

To continue reading the rest of this article, please log in.

Dr Jill Slay AM’s independent review of the SOCI Act makes uncomfortable reading for those working across critical infrastructure and cyber security. Approximately 70 per cent of the sentiment expressed across more than 600 town hall participants was negative. Operators aren’t rejecting the act’s purpose. In fact, respondents widely support the need for the framework. What they’re rejecting is its execution: it’s too reactive, too slow, and structurally unable to keep pace with a threat environment that has changed beyond recognition since 2018.

The culture problem is as serious as the legislative one

One of the review’s most striking findings isn’t about law, but rather the attitude of people deeply embedded in SOCI compliance. The review concluded that the majority of people in these roles have no meaningful emotional connection to the national security purpose of the work. Penalties, when they exist at all, are widely seen as easier to pay than to comply with. Boards, respondents noted, simply don’t care. The result is a sector optimising for attestation cycles and audit readiness, not for the adversary.

That’s the wrong target.

Mandatory sharing: the sector has spoken

For years, the debate around cyber threat intelligence (CTI) sharing has been framed as a question of appetite: do operators actually want to share? The Slay Review answers that definitively. Mentimeter data from more than 460 town hall attendees shows a majority favour mandatory over incentivised CTI sharing. This is no longer a matter of preference. The question has shifted to implementation: how do we build the institutional architecture that mandatory sharing requires?

The answer matters enormously because not all architectures are equal.

Reporting up isn’t sharing

Recommendation 6A calls for mandatory bidirectional threat information exchange between government and operators, modelled explicitly on the United States Cybersecurity and Infrastructure Security Agency’s (CISA) framework. This is one of the review’s most important structural findings, because it names the asymmetry that has frustrated operators for years: you report up, but little of operational value comes back.

That asymmetry isn’t a minor service gap. The review treats it as a structural deficiency requiring legislative remedy. The government must share what it knows with the sector, and not just receive what the sector reports.

The CISA model is worth examining honestly

The review cites CISA as the international benchmark, but the comparison requires candour. The Cybersecurity Information Sharing Act of 2015, which underpins voluntary US private-sector sharing and its liability protections, expired in September 2025. It has survived only through short-term congressional extensions. Significant components of CISA’s operational capability have effectively been switched off by recent budget decisions.

A national intelligence capability that exists only as long as a funding line is protected isn’t a sovereign capability. It’s contingent capability. Australia has historically drawn on CISA’s frameworks, tooling, and threat intelligence outputs. Where that pipeline narrows, the gap doesn’t fill itself.

This is precisely why Australia is building that capability on different terms: industry-led, cross-sector, and not contingent on the rhythms of another country’s budget cycle; one that persists through geopolitical disruption, budget volatility, and changes in government because it is not dependent on any of them.

The window is open now

The government has accepted all six of the review’s recommendations in principle. Tranche 1 consultation closed 1 May 2026. Tranche 2, where the information-sharing mandate and legislative architecture will actually be determined, is the critical window. The drafting is where the detail and risk both coincide.

Operators who stay on the sidelines during that process will live with the result.

The review’s call to clarify the protected information framework in Part 4 of the SOCI Act is equally urgent. Legal uncertainty has been a genuine barrier to participation for years. Some operators avoid sharing due to real legal exposure; others avoid it due to uncertainty about what the law actually permits. Both are legitimate concerns, and both deserve resolution before Tranche 2 drafting is complete.

What good looks like

Done well, CTI sharing transforms security from a reactive compliance function into shared situational awareness: a community of defenders who collectively see more than any of them could alone, and who act on that knowledge before the attack rather than after it.

The Slay Review has given Australia the clearest policy signal yet that this is the direction of travel. The reform process now needs to match the ambition of the diagnosis, rather than producing another compliance layer that operators work around. We have the opportunity here to build a genuine intelligence-sharing culture with the institutional architecture to sustain it.

The physics of the problem have changed. The framework needs to change with them.


CI-ISAC Australia is the nation’s only cross-sector critical infrastructure cyber intelligence-sharing organisation. If you’d like to learn more, book a briefing here.

Cyber DailyWant to see more stories from trusted news sources?
Make Cyber Daily a preferred news source on Google.