Threat actors stories
Access to AI research and software is drawing state-backed and criminal attacks, with technology firms now the world's most targeted sector.
Nearly 100 organisations were hit in a six-week phishing spree that used GitHub repositories and Visual Studio Code tools to infect developers.
CrowdStrike said state-backed espionage and extortion are surging as AI assets inside tech groups draw hackers seeking code, models and access.
The partnership could speed up flaw detection and patching for critical software used by businesses and public sector organisations across the region.
Banks and investment firms face mounting exposure as ransomware incidents jump and more than half of vendors carry high-severity flaws.
Many firms are exposing sensitive data as shadow AI and weak controls leave them open to breaches, hallucinations and unauthorised access.
Blind spots in monitoring are pushing outage bills higher, with Splunk estimating average downtime now costs USD $15,000 a minute.
Early access to Anthropic's Mythos in Australia is helping Rubrik scan its code for flaws before attackers can exploit them.
AI-driven vulnerability discovery is leaving companies less time to patch, prompting new focus on clean recovery, air-gapped backups and testing.
The report says Chinese threat groups are now tracking oil, reconstruction and strategic technologies across Venezuela, Syria, South Korea and the Gulf.
AI-driven vulnerability scanning is forcing firms to rethink complacency as Check Point says existing defences still help against Mythos.
The hire underscores CTERA's push into a fast-growing segment as ransomware drives demand for stronger protection of live storage data.
Security teams in Australia and New Zealand may soon triage flaws faster as TrendAI uses Claude Opus 4.8 to assess exploitability and impact.
Only 3% of Australian businesses have started preparing for post-quantum cryptography, leaving sensitive data exposed to harvest-now, decrypt-later attacks.
A zero-day in a widely used Japanese learning platform let hackers plant malware, while Chinese phishing services are now bypassing one-time codes.
Broader Claude access should help MIND sharpen data discovery and loss prevention for customers, after it joined Anthropic's cyber scheme.
Security teams can now assess network, web and AI weaknesses together as Terra Security broadens continuous validation to infrastructure.
Exposed systems are becoming the main target, as Rapid7 says flaws were used in 38% of incidents and patch windows shrank to five days.
Corporate users can be compromised in under five minutes when attackers pose as help-desk staff in external Microsoft Teams chats, researchers say.
A default Windows utility is giving attackers a way to run malicious scripts through trusted processes and dodge security tools.
.webp)
