15+ min ago  (437+ words) AFP and NSW Police charge three individuals after they allegedly used proceeds from a business email compromise scam to purchase $100, 000 worth of gold bullion. Australian police have charged three individuals following an investigation into a $600, 000 email scam operation. A woman…...

47+ min ago  (193+ words) Critical-severity CVE-2026-42897 could lead to remote code execution, and hackers are already taking advantage. The United States Cybersecurity and Infrastructure Security Agency (CISA) has added a Microsoft Exchange Server spoofing vulnerability to its Known Exploited Vulnerabilities Catalog. CVE-2026-42897 was added…...

5+ hour, 38+ min ago  (299+ words) New research has revealed eighty per cent of Australian organisations have been victims of at least one identity breach in the past year. Cyber security company Sophos has released its findings from a new global survey, noting that identity-based cyber…...

5+ hour, 38+ min ago  (457+ words) Australian investment firm listed as a victim on a darknet leak site; no data has been published yet, however. Weeks after its parent company disclosed a data breach to the Australian Stock Exchange, Australian financial services company Generation Life has…...

2+ day, 23+ hour ago  (583+ words) A new hacking group targets Devonport-based Goodstone Group, compromising employee passports in the attack. A newly emerged ransomware group calling itself CMD Organization has listed the Tasmanian hospitality provider, the Goodstone Group, as a hacking victim on its dark web…...

2+ day, 22+ hour ago  (214+ words) Threat actors have claimed a cyber attack on an Australian hospitality and gaming industry supplier, having listed the firm on the dark web. Bluize is an IT supplier of hospitality solutions for pubs, bars, restaurants, and gaming venues. They provide…...

3+ day, 4+ hour ago  (486+ words) The numbers are stark. In 2018, the average time between a software vulnerability being disclosed and an attacker weaponising it was 2. 3 years. Today, it's 20 hours. Last month, Anthropic released Claude Mythos " an AI model capable of discovering zero-day vulnerabilities at scale,…...

3+ day, 52+ min ago  (456+ words) Threat actors have made claims that they breached British Airways, allegedly having stolen medical data as well as crew and pilot information. In a post on its Telegram, the Infrastructure Destruction Squad claimed that they had breached to the servers…...

3+ day, 7+ hour ago  (446+ words) Cyber Daily chats Claude Mythos and how to tackle the flood of AI-powered vulnerability disclosures with Crowd Strike's Senior VP, Counter Adversary. Cyber Daily: Everyone's talking about frontier AI and its power to find vulnerabilities and speed and scale, but…...

3+ day, 3+ hour ago  (371+ words) Researchers at Rapid7 find new authentication bypass vulnerability that could lead to an attacker gaining admin privileges on affected systems; exploitation already underway. Network hardware giant Cisco has released a patch for a Critical Severity vulnerability in its Cisco Catalyst SD-WAN…...