-
1 week ago | 
ia.acs.org.au | Leonard Bernardone
The cost and frequency of Australian ransomware attacks has continued to soar with advocacy and growth champion Australian Cyber Network (ACN) reporting more than two thirds of domestic organisations have experienced an attack.
Of the 69 per cent of businesses hit by ransomware in the past five years, the ACN observed a staggering 84 per cent opted to pay the ransom.
-
1 week ago | 
ia.acs.org.au | Leonard Bernardone
Cybercriminals have set their sights on Sydney academia with two recent attacks targeting Western Sydney University (WSU) and University of Sydney (USYD).
-
2 weeks ago | 
ia.acs.org.au | Leonard Bernardone
AustralianSuper has sped up plans to introduce wider multi-factor authentication (MFA) controls after a cyberattack saw half a million dollars drained from member accounts.
Last week, Australia’s multi-trillion dollar superannuation industry was victim to a widespread cyberattack targeting customer accounts.
Varying impacts were observed across the industry, but only Australia’s largest super fund, AustralianSuper, reported $500,000 had been lost across four member accounts.
-
2 weeks ago | 
ia.acs.org.au | Leonard Bernardone
Security experts are calling for change after multiple Australian super funds were targeted by a coordinated cyberattack that disrupted services, compromised customer information, and caused limited financial losses.
Over the weekend, several Australian superannuation licensees reported increased traffic and service disruptions amid an industry-wide cyberattack that targeted individual member accounts.
-
2 weeks ago | 
ia.acs.org.au | Leonard Bernardone
Oracle’s ongoing denial of a major security breach has left potential victims and cyber investigators asking: Is Oracle lying?
In late March, hacker ‘rose87168’ (Rose) wrote about an absurdly large data breach of Oracle Cloud on a popular hacking forum, claiming the alleged theft of some six million security credentials across 140,000 companies – of which more than 1,600 had Australian internet domains.
-
3 weeks ago | 
ia.acs.org.au | Leonard Bernardone
Prominent ransom gang KillSec has demanded ransoms from two new Australian victims on its dark web leak site, including a company that sells cybersecurity solutions.
Brisbane-based technology solutions provider Hexicor and Melbourne-based creative content agency Fancy Films both appeared on the threat actor’s leak site between Tuesday and Wednesday morning, marking eight Australian organisations claimed by KillSec since late 2024.
-
4 weeks ago | 
ia.acs.org.au | Leonard Bernardone
At least 9,000 sensitive court files – potentially including apprehended violence orders and details of minors – have been downloaded in a “major data breach” involving the NSW Department of Communities and Justice (DCJ).
On Tuesday, 25 March, cybercrime detectives were alerted to a breach of the NSW Online Registry Website (ORW), an online portal which provides access to sensitive information from both civil and criminal cases across the NSW court system.
-
1 month ago | 
ia.acs.org.au | Leonard Bernardone
Australian companies have been urged to review their security after a hacker claimed to have stolen droves of important credentials from popular cloud company Oracle, despite the company staunchly denying any data has been breached.
On a popular hacking forum, user ‘rose87168’ (Rose) declared the alleged theft of some six million security credentials across 140,000 companies using Oracle Cloud, potentially marking the biggest supply chain hack of the year.
-
1 month ago | 
ia.acs.org.au | Leonard Bernardone
A professor at New South Wales’ Charles Sturt University (CSU) has launched a “revolutionary approach” to stopping ransomware attacks.
Named “Ransomware-Resilient File Safe Haven” (RFSH) or “Redwire”, the technology offers a last line of defence in the event upper-layer security systems – such as antivirus, endpoint detection or intrusion detection systems – fail.
-
1 month ago | 
ia.acs.org.au | Leonard Bernardone
Australia's corporate regulator is taking fixed-income broker FIIG Securities to court for a slew of alleged cybersecurity failures in the lead-up to a 2023 cyberattack.
The attack, which started in May 2023, saw Russia-based ransom gang AlphV claim the theft of 385GB in confidential data from FIIG.
