Section

Cybersecurity

PeopleSoft zero-day hit 100 organisations, Mandiant says

PeopleSoft zero-day CVE-2026-35273 was exploited for two weeks before disclosure, with universities making up most victims.

By Reza Khalil7:45 PM · June 14, 2026

Server racks in a data centre representing enterprise software security exposure

Cybersecurity

PeopleSoft zero-day hit 100 organisations, Mandiant says

PeopleSoft zero-day CVE-2026-35273 was exploited for two weeks before disclosure, with universities making up most victims.

By Reza Khalil7:45 PM · June 14, 2026

Cybersecurity

Google Gemini scam lawsuit targets China phishing ring

Google Gemini scam lawsuit alleges a China-based network used AI to scale fake sites, scam texts and phishing links aimed at Android users.

By Reza Khalil5:29 PM · June 12, 2026

Cybersecurity

Mackay Sugar cyberattack halts Queensland cane harvest

A cyberattack has forced Mackay Sugar to halt cane crushing at two Queensland mills, affecting about 1,300 family farms at the start of the harvest season.

By Reza Khalil11:00 PM · June 10, 2026

Sugar cane field in Queensland — Mackay Sugar cyberattack disruption

Cybersecurity

OpenAI Lockdown Mode targets ChatGPT prompt injection

OpenAI Lockdown Mode limits ChatGPT web and connector features to reduce prompt-injection data leaks, but it is not a complete fix.

By Reza Khalil6:00 AM · June 7, 2026

Cybersecurity

What is BitLocker? Windows encryption in 2026

BitLocker 2026 protects Windows laptop data with disk encryption, but recovery keys and Windows editions decide how it works.

By Reza Khalil10:30 AM · June 7, 2026

Padlock and chain representing BitLocker drive encryption on Windows PCs

Cybersecurity

Chinese authority scams cost Australians $12m in 2025

Chinese authority scams cost Australians more than $12m in 2025, with fake police calls, forged warrants and bank alerts in focus.

By Reza Khalil8:38 PM · June 5, 2026

Scamwatch illustration for Chinese authority scam warnings

Cybersecurity

Anthropic Mythos used by NSA for cyber work after AU rollout

Anthropic Mythos is being used by the NSA for cyber operations as the AI lab expands controlled access to Australian defenders.

By Reza Khalil7:58 PM · June 4, 2026

Server racks representing restricted AI systems used in cyber operations

Cybersecurity

IBM, AT&T foreign hacks claim tests disclosure rules

IBM, AT&T foreign hacks allegations raise disclosure questions after a former IBM cyber executive said intrusions were hidden from the US government.

By Reza Khalil8:55 PM · June 4, 2026

Server racks and network cabling in an enterprise data centre

Cybersecurity

Meta AI chatbot hack exposed Instagram recovery flaw

Meta AI chatbot hack reports show attackers abused Instagram account recovery, forcing Meta to patch an AI support workflow.

By Reza Khalil6:38 PM · June 2, 2026

Smartphone screen showing social media apps, including Instagram, for an account-recovery security story

Cybersecurity

Iran AI cyber attacks: ChatGPT misuse is now real

Iran AI cyber attacks show how ChatGPT and Gemini can lower the skill barrier for malware, phishing and sanctions evasion.

By Reza Khalil10:00 PM · May 31, 2026

Code on monitors representing AI-assisted cyber operations

Cybersecurity

ChatGPT Google Sheets flaw exposes workbook data

ChatGPT Google Sheets flaw disclosed by PromptArmor could let one poisoned sheet leak workbook data and show phishing overlays.

By Reza Khalil10:05 PM · May 31, 2026

Data security lettering arranged around a digital privacy concept, used to illustrate spreadsheet exfiltration risk

Cybersecurity

Microsoft zero-day threat sparks researcher backlash

Microsoft zero-day disclosures have triggered backlash after legal threats to a researcher, with six Windows flaws at the centre of the dispute.

By Reza Khalil8:00 AM · May 31, 2026

A Microsoft Surface laptop on a desk, representing Windows security disclosure risk

Cybersecurity

Zscaler stock sinks on soft outlook and sales reset

Zscaler stock sank 31 per cent after softer guidance and sales turnover, raising fresh questions about cyber budgets and enterprise deal flow.

By Reza Khalil9:51 PM · May 27, 2026

Cybersecurity

Starlette flaw exposes AI agent services to auth bypass

A Starlette flaw tied to malformed Host headers can bypass path-based checks, pushing FastAPI and AI-agent teams to patch to version 1.0.1.

By Reza Khalil8:42 PM · May 26, 2026

Python code on a screen representing software supply-chain risk in AI tooling

Cybersecurity

myGov passkey explained: how it works and when to use one

myGov passkeys let Australians sign in with a fingerprint, face scan or device PIN instead of a password. Here's how setup works.

By Reza Khalil7:25 PM · May 25, 2026

Person using a smartphone near a laptop to illustrate secure digital sign-in

Cybersecurity

VeroGuard rescue after $55m collapse raises questions for buyers

VeroGuard's rescue from liquidation after a $55 million collapse keeps the cyber supplier alive but leaves open questions over ownership, support and public backing.

By Reza Khalil1:40 PM · May 25, 2026

Cybersecurity

Steggall says WhatsApp account hit in suspected foreign-state phishing attack

Zali Steggall said her WhatsApp account was compromised in a March phishing attack that parliamentary officials linked to a suspected foreign state actor.

By Reza Khalil10:00 AM · May 25, 2026

Smartphone screen displaying the WhatsApp app, illustrating messaging account security risks

Cybersecurity

Cybersecurity jobs rise as AI-generated code widens risk

Cybersecurity jobs are rising as AI-generated code and shadow AI add validation, governance and breach-response work for enterprise teams.

By Reza Khalil10:15 AM · May 24, 2026

Developer reviewing code on a laptop and external monitor in an office as AI-written software increases security review work.

Cybersecurity

Anthropic Mythos flaws put patch speed at the centre

Anthropic Mythos found more than 10,000 serious flaws in a month, putting patch cycles, triage and change control at the centre of software security.

By Reza Khalil7:45 PM · May 24, 2026

Developers collaborating on code review and security remediation

Cybersecurity

ASX 200 infostealer infections are now a board risk

ASX 200 infostealer infections are exposing how stolen credentials and shared suppliers can turn a solid cyber score into real board risk.

By Reza Khalil12:25 AM · May 23, 2026

Cybersecurity

Device code phishing surges as ASD warns Microsoft 365 users

Device code phishing is targeting Australian Microsoft 365 users, the ASD has warned, as Proofpoint tracks a surge in criminal toolkits and phishing-as-a-service platforms.

By Reza Khalil8:30 PM · May 21, 2026

Cybersecurity

Google publishes Chromium exploit code before patch lands

Chromium exploit code was published before a fix was broadly available, raising short-term risk for Chrome and other browsers built on Google's engine.

By Reza Khalil12:55 AM · May 21, 2026

Computer screen showing an authentication failure message, illustrating browser security risk.

Cybersecurity

GitHub breach exposes 3,800 repos in VS Code attack

GitHub breach exposed about 3,800 internal repositories after a poisoned VS Code extension hit one employee device, widening supply-chain concerns.

By Reza Khalil8:50 PM · May 20, 2026

Hands typing code on a laptop, illustrating developer workstation security

Cybersecurity

Claude Code sandbox bypass patched after 130 releases

Anthropic patched a Claude Code sandbox bypass affecting about 130 releases, showing how AI coding tools can expose developer workstations.

By Reza Khalil9:31 PM · May 20, 2026