Section
Cybersecurity
North Korea-linked npm malware mimics Rollup polyfills
North Korea-linked npm malware posing as Rollup polyfills stole browser data, crypto-wallet files and developer secrets, JFrog said.
AI cyber threat warning: Five Eyes says attacks months away
AI cyber threat warning from Five Eyes agencies says attackers could outpace current defences within months, pushing boards and CISOs to act now.
Older iPhones hit by unpatchable BootROM flaw
iPhone BootROM flaw disclosures show some A12- and A13-era Apple devices cannot be fully fixed in software after physical-access attacks.
Brazil fake emergency alert hack hits millions of phones
Brazil fake emergency alert messages hit phones in three states after a suspected hack shut the civil-defence system and triggered a police probe.
PeopleSoft zero-day hit 100 organisations, Mandiant says
PeopleSoft zero-day CVE-2026-35273 was exploited for two weeks before disclosure, with universities making up most victims.
PeopleSoft zero-day hit 100 organisations, Mandiant says
PeopleSoft zero-day CVE-2026-35273 was exploited for two weeks before disclosure, with universities making up most victims.
Google Gemini scam lawsuit targets China phishing ring
Google Gemini scam lawsuit alleges a China-based network used AI to scale fake sites, scam texts and phishing links aimed at Android users.
Mackay Sugar cyberattack halts Queensland cane harvest
A cyberattack has forced Mackay Sugar to halt cane crushing at two Queensland mills, affecting about 1,300 family farms at the start of the harvest season.
OpenAI Lockdown Mode targets ChatGPT prompt injection
OpenAI Lockdown Mode limits ChatGPT web and connector features to reduce prompt-injection data leaks, but it is not a complete fix.
What is BitLocker? Windows encryption in 2026
BitLocker 2026 protects Windows laptop data with disk encryption, but recovery keys and Windows editions decide how it works.
Chinese authority scams cost Australians $12m in 2025
Chinese authority scams cost Australians more than $12m in 2025, with fake police calls, forged warrants and bank alerts in focus.
IBM, AT&T foreign hacks claim tests disclosure rules
IBM, AT&T foreign hacks allegations raise disclosure questions after a former IBM cyber executive said intrusions were hidden from the US government.
Anthropic Mythos used by NSA for cyber work after AU rollout
Anthropic Mythos is being used by the NSA for cyber operations as the AI lab expands controlled access to Australian defenders.
Meta AI chatbot hack exposed Instagram recovery flaw
Meta AI chatbot hack reports show attackers abused Instagram account recovery, forcing Meta to patch an AI support workflow.
Microsoft zero-day threat sparks researcher backlash
Microsoft zero-day disclosures have triggered backlash after legal threats to a researcher, with six Windows flaws at the centre of the dispute.
ChatGPT Google Sheets flaw exposes workbook data
ChatGPT Google Sheets flaw disclosed by PromptArmor could let one poisoned sheet leak workbook data and show phishing overlays.
Iran AI cyber attacks: ChatGPT misuse is now real
Iran AI cyber attacks show how ChatGPT and Gemini can lower the skill barrier for malware, phishing and sanctions evasion.
Zscaler stock sinks on soft outlook and sales reset
Zscaler stock sank 31 per cent after softer guidance and sales turnover, raising fresh questions about cyber budgets and enterprise deal flow.
Starlette flaw exposes AI agent services to auth bypass
A Starlette flaw tied to malformed Host headers can bypass path-based checks, pushing FastAPI and AI-agent teams to patch to version 1.0.1.
Steggall says WhatsApp account hit in suspected foreign-state phishing attack
Zali Steggall said her WhatsApp account was compromised in a March phishing attack that parliamentary officials linked to a suspected foreign state actor.
VeroGuard rescue after $55m collapse raises questions for buyers
VeroGuard's rescue from liquidation after a $55 million collapse keeps the cyber supplier alive but leaves open questions over ownership, support and public backing.
myGov passkey explained: how it works and when to use one
myGov passkeys let Australians sign in with a fingerprint, face scan or device PIN instead of a password. Here's how setup works.
Anthropic Mythos flaws put patch speed at the centre
Anthropic Mythos found more than 10,000 serious flaws in a month, putting patch cycles, triage and change control at the centre of software security.
Cybersecurity jobs rise as AI-generated code widens risk
Cybersecurity jobs are rising as AI-generated code and shadow AI add validation, governance and breach-response work for enterprise teams.
ASX 200 infostealer infections are now a board risk
ASX 200 infostealer infections are exposing how stolen credentials and shared suppliers can turn a solid cyber score into real board risk.





















