This monthly review provides a curated summary of Australian and New Zealand cyber, privacy, and information security developments identified during May 2026. It includes a cross-section of incidents, regulatory updates, audit findings, and broader industry news relevant to business and government audiences.
The content is independently sourced from publicly available reports and government publications to support internal awareness and risk-informed decision-making. This report is free to use within organisations for awareness and education purposes; however, the “collection” remains the intellectual property of Australian Cyber Aware and must not be reproduced, redistributed, or republished without permission.
This post may be updated as more news or reports are discovered. The latest version can be accessed via the Australian Cyber Aware website.
Commentary: Continuing to make minor improvements to the website and content, lots to do when I have some spare time. The Australian Cyber Aware Cyber Incidents Listing – Australian Cyber Aware is functional and now just requires going through my incident back catalogue. In this edition, I now have the cyber news summary from my Flipboard magazine included in the monthly report (my first Claude-assisted Python script).
May 2026 was busy on the incident front, with about 27 incidents found/reported, with the highlight being all of the fallout over the LMS provider Canvas ransomware debacle, with just some of the victims being University of Technology Sydney (UTS), University of Sydney, University of Melbourne, RMIT University, Flinders University, Swinburne University, TasTAFE, and Queensland Department of Education. Which ended with Canvas’s parent company Instructure, “paying off” the ransomware group ShinyHunters “Canvas’ parent company reaches agreement with hacking group behind breach“. Good one for testing your third-party risk management.
On the news front, three articles stand out from the pack:
Next month, Audits will be added, such fun things to review if you’re in a government or regulated sector. They provide really good inputs for your audit planning, and a reminder to check on your corrective action tasks? For example, from the 27 May, “Cyber Security Readiness for the 2026 Census” produced by the Australian National Audit Office (ANAO) gives a good highlight on governance and risk management.
Please free to comment and provide suggestions.
Publicly Reported Incidents for May 2026
Claim Status: Confirmed = Acknowledged by organisation/public statement/regulator | Published = Published in mainstream or reputable media | Claim = Leak-site claim only, unverified | Withdrawn = The claim has been withdrawn | Denied = The victim has formally denied the claim | Unknown = No corroborating evidence has been found
NOTE: Claimed, withdrawn, denied, and unknown listings may be extortion events with no factual basis to believe that an actual incident occurred.
Claim 28-May-26 AU VIC
[Unconfirmed] Qilin ransomware group has claimed to have breached a Victorian farmers’ group
An unverified report from the Qilin group claims to have breached the Tripod Framers Group, a Victorian family business of fourth-generation farmers.
Confirmed 28-May-26 AU QLD
Exclusive: Accounting firm Kennedy McLaughlin confirms ‘cyber incident’ following Qilin ransomware attack
Queensland-based firm Kennedy McLaughlin says it has notified impacted individuals as hackers publish client financial and banking data online.
Published 28-May-26 AU VIC
Exclusive: Victorian retail logistics firm allegedly breached by DragonForce
QLS Group is a large appliance logistics services provider. DragonForce ransomware gang claims to have exfiltrated 554.65 gigabytes of data.
Published 27-May-26 NZ
Exclusive: New Zealand’s Alpha Group Holdings allegedly hacked
The Qilin ransomware group have claimed to have “sensitive data” from Auckland-based health supplement producer, Alpha Group Holdings
Published 26-May-26 AU VIC
Exclusive: Marketing and merchandise firm Branded Products listed by Qilin ransomware
A Melbourne-based branded merchandise supplier, Branded Products, has been listed as a victim of hacking by the Qilin ransomware-as-a-service operation.
Published 25-May-26 AU VIC
Exclusive: Victorian regional newspaper allegedly hacked by ransomware group
The Brain Cipher ransomware group has listed The Adviser – a newspaper and media outlet serving the Shepparton area in regional Victoria – as a hacking victim on its darknet leak site.
Confirmed 22-May-26 AU NSW
State Library of NSW responding to April cyber intrusion
The State Library of NSW has said it expects to have its full range of services back online by 29 May, as it continues to handle the fallout from an April cyber incident.
Confirmed 19-May-26 AU VIC
Exclusive: Major cleaning and facility services firm confirms third-party cyber incident
Major private cleaning and facility services firm Menzies Group has confirmed a cyber incident that occurred after a third-party IT provider was breached.
Published 17-May-26 AU VIC
Exclusive: INC Ransom claims cyber attack on Australian engineering service company
Threat actors INC Ransom have claimed responsibility for a cyberattack on an Australian engineering solutions company, Metaval, and are threatening to publish data they allegedly exfiltrated.
Published 15-May-26 AU VIC
Exclusive: Hospitality IT provider allegedly breached by Qilin
Bluize is an IT supplier of hospitality solutions for pubs, bars, restaurants, and gaming venues. Threat actor Qilin has claimed responsibility for a cyberattack on an Australian hospitality and gaming industry supplier, having listed the firm on the dark web.
Published 17-May-26 AU NSW
Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims
The Australian College of Business Intelligence (ACBI) has said it is aware of claims by the ransomware group Qilin and is actively investigating a potential cyber incident.
Confirmed 14-May-26 AU TAS
Exclusive: Tassie hospitality group confirms CMD Organisation ransomware attack
A new hacking group targets Devonport-based Goodstone Group, compromising employee passports in the attack.
Confirmed 13-May-26 AU WA
Scope Systems confirms cyber incident, says no data loss occurred
Western Australia-based software deployment specialist and reseller Scope Systems has disclosed a cyber incident but said no data loss occurred. The company posted a statement on 6 May, confirming that it had detected malicious activity.
Published 12-May-26 AU VIC
Exclusive: Aussie firm Earth Systems listed by INC Ransom hacking group
The hackers INC Ransom listed the Victoria-based Earth Systems in a 7 May post to their darknet leak site, claiming to have stolen at least 600 gigabytes of company data, including, according to INC Ransom, “full corp data, nda client contract project” information.
Confirmed 12-May-26 AU VIC
Institute of Public Accountants members hit by data breach
Members of the Institute of Public Accountants received an email last week after the names and member numbers were leaked. The body has stressed that the breach did not include any personal information.
Published 11-May-26 AU NSW
Exclusive: Aussie toy distributor listed by M3rx ransomware
“An Australian toy distributor KBToys, with an extensive eBay presence is the latest Australian victim claimed by a newcomer ransomware gang, M3rx.
Ransomware notification sites claim to have exfiltrated 140 gigabytes of data, spanning nearly 37,000 files.”
Published 11-May-26 AU NSW
Exclusive: Australian Computer Society investigating possible breach after ShinyHunters hack claims
The Australian Computer Society (ACS) has responded to claims made by the hackers behind last week’s Instructure education breach.
Published 07-May-26 AU QLD
Exclusive: Aussie car parts importer Strategic Imports allegedly breached by threat actors
Threat actors have claimed responsibility for a cyberattack on a Queensland automotive parts importer, Strategic Imports, alleging they exfiltrated data from its network.
Confirmed 07-May-26 AU QLD
Qld gov says students, staff caught in Canvas cyber incident
“Education Queensland says that students and staff working or studying at state schools since 2020 may have been caught up in a breach of the global education systems vendor, Instructure. Multiple institutions, including RMIT University, UTS, TasTAFE Tasmania and Western Sydney University, were urgently assessing their potential exposure to the incident.”
Claim 06-May-26 NZ
[Unconfirmed] Ransomware group The Gentlemen has claimed to have breached New Zealand sporting distributor Worralls
W.H. Worrall & Co. Limited (Worralls) is New Zealand’s leading distributor of world-class cycling and sporting brand
Confirmed 06-May-26 AU QLD
Hacked: ALS discloses cyber incident, unauthorised access to IT systems
Queensland-based scientific testing company ALS recently reported to the ASX that it “identified malicious cyber activity involving unauthorised third-party access to some of our IT systems.” No details are available on the incident.
Published 06-May-06 AU NSW
Exclusive: Australian energy management firm allegedly breached by SafePay
Threat actor SafePay has claimed responsibility for a cyberattack on an NSW energy management and consulting firm, Energy Action, threatening to release allegedly stolen data within a number of days.
Confirmed 05-May-26 AU NSW
Exclusive: Champion Homes confirms customer data compromised in ‘cyber event’
Australian home builder Champion Homes has confirmed it was recently the victim of a cyber attack that exposed a limited amount of employee and customer data. DragonForce ransomware operation threatened to publish a 44-gigabyte dataset on the dark web.
Confirmed 04-May-26 AU NSW
Exclusive: Major Australian jewellery brand confirms cyber incident
Gregory Jewellers is an Australian-owned retailer that specialises in fine jewellery, watches, and accessories. The company was listed on the Kairos ransomware gang’s dark web leak site, which claimed to have stolen 574 gigabytes of data from it.
Confirmed 04-May-26 NZ
Exclusive: Kiwi firm, McKay electrical contractor, confirms cyber attack
McKay, one of New Zealand’s largest privately owned electrical contractors, has confirmed it was the victim of a cyber attack in January, after it was listed as a victim on the darknet leak site of a newly emerged ransomware group.
Claim 01-May-26 AU
[Unconfirmed] Fulcrumsec claims breach of YOUX / DRIVE IQ, formerly known as Drive IQ, is an Australian technology company specialising in connected vehicle data and mobility intelligence.
Published 01-May-26 AU NSW
Exclusive: Prime Properties listed as breach victim by M3rx ransomware
Hackers are alleged to have stolen more than 80,000 documents totalling 100 gigabytes of data from a Sydney-based property investment firm, Prime Properties.
Cyber News of Australia May 2026
Curated Australian & New Zealand cyber, privacy, and security news
Sun, 31 May 2026
VIDEO: Damning report finds Manage My Health cyber attack was ‘largely preventable’ | Stuff.co.nz
The Ministry of Health admits that a cyber attack that exposed highly sensitive patient information should never have happened. An independent review has found major gaps in security controls, weak oversight of third-party providers, and failures in how patients were notified after the breach. And experts say key details of the report remain redacted. Stuff NZ
Sat, 30 May 2026
Australia’s New ADM Transparency Obligation: OAIC Signals a Broad Reading Ahead of December 2026
On 18 May 2026, the Office of the Australian Information Commissioner (OAIC) released its Issues Paper on the new automated decision-making (ADM) …
Sat, 30 May 2026
APRA and ASIC are clear that controls must keep pace with AI
Australian Prudential Regulation Authority’s (APRA) call for a step change in managing AI risk is not fundamentally new. It reflects the familiar …
Sat, 30 May 2026
From privacy intent to defensible data action
For many organisations, the privacy challenge is no longer understanding the law. It is about demonstrating, with evidence, that personal information …
Fri, 29 May 2026
Exclusive: Accounting firm Kennedy McLaughlin confirms ‘cyber incident’ following Qilin ransomware attack
Queensland-based firm Kennedy McLaughlin says it has notified impacted individuals as hackers publish client financial and banking data online. • Fri, …
Fri, 29 May 2026
Gov urges agencies to fix security basics before buying into frontier AI
The federal government has told its agencies that the answer to frontier artificial intelligence (AI) compressing attack timelines from days to hours …
Fri, 29 May 2026
VIDEO: Leader selected for Australia’s new AI Safety Institute | ABC NEWS
Dr Kate Conroy has been chosen as the inaugural general manager of Australia’s AI Safety Institute. The institute is a new government body within the Department of Industry, Science and Resources that monitors, tests, and shares information on emerging AI capabilities, risks, and harms | ABC NEWS Australia
Fri, 29 May 2026
Cybersecurity issues facing Australia’s 2026 Census
The Australian Bureau of Statistics (ABS) must strengthen its cybersecurity preparedness ahead of the 2026 Census in August, an audit of the …
Fri, 29 May 2026
Aussie government proposes automatic reimbursement for scam losses below $3,000
Government outlines its plan to streamline dispute resolution processes to ensure “responses are appropriate without imposing unnecessary burden on …
Fri, 29 May 2026
Exclusive: Victorian retail logistics firm allegedly breached by DragonForce
Threat actors have claimed a cyber incident impacting a Victoria-based logistics firm, claiming to have stolen over half a terabyte of data. • Thu, 28 …
Thu, 28 May 2026
Scam victims to get up to $3,000 under new government proposal | ABC NEWS
Under the federal government’s proposed laws, scam victims could getup to $3,000 back from their bank or other companies. National Consumer Affairs reporter Michael Atkin says it would be a dramatic change from the current system when consumers are often tied up for months trying to recover the money | ABC NEWSAustralia
Thu, 28 May 2026
Exclusive: Marketing and merchandise firm Branded Products listed by Qilin ransomware
A company with clients including the Department of Foreign Affairs and Trade, the Royal Flying Doctor Service, and many more has suffered a potential …
Thu, 28 May 2026
Exclusive: New Zealand’s Alpha Group Holdings allegedly hacked
Qilin ransomware continues its ANZ hacking campaign, listing an Auckland-based health supplement producer. • Wed, 27 May 2026 • Security *]:clear-none …
Wed, 27 May 2026
Scammers target Australians with ‘free’ tai chi classes ad to trick them into downloading malware
Scammers are targeting Australians with advertisements for ‘free’ tai chi classes to trick them into downloading malware capable of stealing money …
Wed, 27 May 2026 05:11:25 GMT
Attorney-General’s Department contacted Australian Cyber Security Centre when notified of court privacy breach
Litigants in at least 146 court matters were potentially involved in a data breach that is now the subject of a formal complaint with the privacy …
Mon, 25 May 2026
Alert! National Anti-Scam Centre, ASIC warn Aussies of fake crypto trading platforms
Scammers are advertising crypto trading websites filled with fake data to share trading message groups – and taking victims’ money right now. • Mon, …
Mon, 25 May 2026
Exclusive: Victorian regional newspaper allegedly hacked by ransomware group
The Adviser, a media outlet based in Shepparton, has been hit by a potential 350-plus gigabyte data breach. • Mon, 25 May 2026 • Security *]:clear-none …
Sat, 23 May 2026
State Library of NSW responding to April cyber intrusion
Library services remain offline following “suspicious activity in our catalogue”; services are expected to be back online by the end of the month. • …
Sat, 23 May 2026
Directors told to stop admiring the AI problem and start governing it – AICD
Directors told to stop admiring the AI problem and start governing it Friday, 15 May 2026 Brisbane played host to the AICDs’ Tech Governance Forum last …
Sat, 23 May 2026
Student hackers take on ‘ethical battle’ beyond cyber attacks and exploits
When more than 100 hackers meet in a room, it might be a good idea to update your password. But these cybersecurity sleuths have gathered for a good …
Fri, 22 May 2026
How Australia’s ASIC v FIIG decision supports your cyber investment business case
What you need to know First AFSL cyber penalty: FIIG’s $2.5 million penalty is the first cyber security penalty under general financial services …
Fri, 22 May 2026
APRA and ASIC Sound the AI Alarm for Boards and Executives
What you need to know APRA and ASIC have sent powerful messages to regulated entities regarding AI, cyber security and operational resilience in …
Wed, 20 May 2026
Exclusive: INC Ransom claims cyber attack on Australian engineering service company
Threat actors have claimed a cyber attack on an Australian engineering solutions company and are threatening to publish data they allegedly …
Tue, 19 May 2026
Exclusive: Major cleaning and facility services firm confirms third-party cyber incident
Major private cleaning and facility services firm Menzies Group has confirmed a cyber incident that occurred after a third-party IT provider was …
Tue, 19 May 2026
Exclusive: Australian College of Business Intelligence investigating Qilin ransomware claims
A Sydney-based vocational college has found no evidence of compromised student data after being listed on the leak site of a prolific hacking group. • …
Tue, 19 May 2026
Victorian bulk porting scammer gets over two years in prison
A 35-year-old man from Lynbrook, south-east Melbourne, has received a prison sentence of two years and two months, with a 12-month non-parole period, …
Fri, 15 May 2026
NSW cyber cops bust alleged bullion-buying BEC bandits
NSW Police have charged three people over an alleged $600,000 business email compromise (BEC) scam operation, after detectives caught a young woman …
Sat, 16 May 2026
Miners’ data targeted as hackers hold software provider to ransom
Dozens of Australian mining companies are scrambling to access their key technology systems after a major software supplier to the sector was …
Sat, 16 May 2026
Instructure dealing with Canvas cyberhackers a dangerous tactic, say experts
The company that runs Canvas has painted a target on its back for future extortion attempts by making a deal with hackers, according to cybersecurity …
Fri, 15 May 2026
Exclusive: Hospitality IT provider allegedly breached by Qilin
Threat actors have claimed a cyber attack on an Australian hospitality and gaming industry supplier, having listed the firm on the dark web. • Fri, 15 …
Thu, 14 May 2026
ACCC welcomes another year of funding for the National Anti-Scam Centre
The Australian consumer watchdog is pleased with the overall funding boost of $67.7 million over four years in the 2026–27 budget. • Thu, 14 May 2026 …
Thu, 14 May 2026
Report: Business email compromise attacks surged dangerously in April
BEC attacks rose 151 per cent month on month in April, with advanced fee and gift card fraud key drivers. • Thu, 14 May 2026 • Security *]:clear-none …
Wed, 13 May 2026
Scope Systems confirms cyber incident, says no data loss occurred
Western Australia-based software deployment specialist and reseller Scope Systems has disclosed a cyber incident but said no data loss occurred. • …
Wed, 13 May 2026
Instructure breach: ShinyHunters says ‘matter has been resolved’
The hackers behind the global Canvas LMS breach have said they are no longer “seeking money” from any victim. • Wed, 13 May 2026 • …
Wed, 13 May 2026
Gov to sustain key tech programs with new billions
The federal government has bucked expectations with a large amount of investment into sustaining technology projects, headlined by $654m for Digital …
Wed, 13 May 2026
Canvas’ parent company reaches agreement with hacking group behind breach
The hacking group that targeted the Canvas educational tool and the parent company that owns the software struck a deal to secure stolen student …
Wed, 13 May 2026
Ransom ‘paid’ to hackers who crippled online learning in Australia
The parent company of Canvas, the online learning platform used by hundreds of thousands of Australian students and teachers, has struck a deal with …
Tue, 12 May 2026
VIDEO: Only 30% of New Zealand businesses have a cyber response plan | Herald NOW Business
Datacom’s Adam Kirkpatrick on the growing threat from cyber attacks and what organisations need to do to protect themselves | NZ Herald
Tue, 12 May 2026
VIDEO: Education sector caught in major security breach | 9 News Australia
A cybersecurity breach affecting 200 million people and more than 9,000 institutions worldwide has hit students and teachers across Queensland’s education sector. | 9News.com.au
Tue, 12 May 2026
Federal Budget 2026: The state of cyber security spending for the coming year
As usual Australia’s latest Federal Budget has made some losers, and other winners. Here’s where the nation stands on cyber security spending and …
Tue, 12 May 2026
Institute of Public Accountants members hit by data breach
Members of the Institute of Public Accountants received an email last week after the names and member numbers were leaked. The body has stressed that …
Tue, 12 May 2026
Exclusive: Aussie firm Earth Systems listed by INC Ransom hacking group
An environmental, social science, and engineering company suffers an alleged 600-gigabyte data breach; tax invoices, NDA’s, and contracts already …
Tue, 12 May 2026
‘Trust is built here’: responding to requests for personal…
We are a leading Australian law firm. With more than 140 partners, we have depth and breadth of expertise and service corporate, public sector and …
Tue, 12 May 2026
NSW Government Bulletin: Surveillance technologies in the workplace
Agencies are increasingly considering or deploying surveillance technologies to manage security, safety, productivity and risk. These technologies …
Mon, 11 May 2026
Hundreds at risk after ‘malicious’ Hutt City Council cyberattack
The council said 732 people may have had financial information exposed through email correspondence.
Mon, 11 May 2026
New Zealand students’ details caught up in massive global university hack
University students across New Zealand cannot submit assignments or communicate with tutors after their online learning system was hit by a global …
Mon, 11 May 2026
Exclusive: Australian Computer Society investigating possible breach after ShinyHunters hack claims
The ACS is one of dozens of Australian entities potentially impacted by the recent Instructure third-party data breach. • Mon, 11 May 2026 • …
Mon, 11 May 2026
Exclusive: Aussie toy distributor listed by M3rx ransomware
Hackers claim to have stolen 140 gigabytes of data from KB Toys, with more than 36,000 files potentially compromised. • Mon, 11 May 2026 • …
Mon, 11 May 2026
Australia strengthens cyber defence in multinational operation
Australian Defence Force (ADF) cyber specialists have taken part in a multinational exercise aimed at strengthening regional cyber warfare …
Fri, 08 May 2026
New Zealand announces new sanctions against Russian cyber actors, online support platforms
The New Zealand government has announced a new round of sanctions targeting malicious Russian, North Korean, and Iranian cyber actors as well as …
Sat, 09 May 2026
Tens of thousands of students and teachers unable to access QLearn following cybersecurity breach
Hundreds of thousands of students have been left unable to access schoolwork or submit assessments, with some receiving ransom messages following a …
Sat, 09 May 2026
Australian privacy compliance: four key developments in 2026
Australian privacy law is not standing still. In 2026, businesses face a wave of new compliance obligations: mandatory disclosure requirements for…
Sat, 09 May 2026
Privacy awareness 2026: Trust is built when things go wrong
How cyber and data teams support effective privacy complaint resolution When talking about privacy, the focus is often on protection – strong …
Sat, 09 May 2026
Queensland students unable to submit assignments after cyber attack forces shutdown of QLearn and Canvas
Hackers accessed data linked to 1300 schools, leaving thousands scrambling to submit assignments and access coursework.
Sat, 09 May 2026
Hackers just stole data from 9,000 schools and unis around the world. How can we protect student privacy?
This week, US-based education technology provider Instructure announced a significant cybersecurity incident affecting its Canvas system. This is …
Sat, 09 May 2026
Australia warns finance firms over AI-driven cyber risks
The Australian Securities and Investments Commission (ASIC) told financial firms to strengthen cyber defenses, warning that advanced AI models such …
Fri, 08 May 2026
APRA calls for step-change in AI risk management across financial sector
The Australian Prudential Regulation Authority (APRA) has urged banks, insurers and superannuation trustees to lift how they manage artificial …
Fri, 08 May 2026
Queensland education breach highlights third-party cyber risk concerns
A third-party data breach disclosed by the Queensland Department of Education has renewed scrutiny on cyber risks tied to vendors and online learning …
Fri, 08 May 2026
ASIC calls for financial sector uplift as AI cyber threats take hold
The Australian Securities and Investments Commission (ASIC) has urged financial services firms to bolster their cyber resilience as AI tools expand …
Fri, 08 May 2026
Police advised to disable bluetooth on Axon body-worn cameras to avoid detection by criminals
Thousands of police officers have been told to disable the bluetooth on their Axon body-worn cameras during raids and undercover jobs to avoid being …
Fri, 08 May 2026
Aussie schools breach: The Instructure hack “transcends an isolated IT incident”
Schools and universities across Australia have been caught up in a global IT breach, with possibly lifelong impacts for students. • Fri, 08 May 2026 • …
Fri, 08 May 2026
Hacked: ALS discloses cyber incident, unauthorised access to IT systems
The global scientific testing company told the ASX that “malicious cyber activity” caused some operational disruptions. • Wed, 06 May 2026 • …
Fri, 08 May 2026
Real estate giant Cushman Wakefield confirms cyber incident, Qilin and ShinyHunters claim attack
Real estate giant Cushman & Wakefield confirms cyber incident, Qilin and ShinyHunters claim attack Major real estate services leader Cushman & …
Fri, 08 May 2026
NSW, other states, investigating Instructure/Canvas data breach
Education departments across the country are responding to a major breach at a third-party cloud education platform. An expert warns that …
Thu, 07 May 2026
VIDEO: Education software Canvas hacked with student data accessed by criminals | ABC NEWS
The international learning management software Canvas, used by various schools and tertiary institutions, has been hacked. Tens of thousands of Queensland students and teachers have been caught up in a major data breach, with names, school locations, and emails likely compromised. One of the facilities impacted, TasTafe, says some of its data has been accessed by a “criminal third party” | ABC NEWS Australia
Thu, 07 May 2026
Aus universities and TAFEs investigating exposure to Canvas cyber incident
Australian universities and TAFEs have joined global counterparts in scrambling to understand their potential exposure to a cyber incident involving …
Thu, 07 May 2026
Qld gov says students, staff caught in Canvas cyber incident
The Queensland government says that students and staff working or studying at state schools since 2020 may have been caught up in a breach of global …
Thu, 07 May 2026
Exclusive: Australian energy management firm allegedly breached by SafePay
Threat actors have claimed a cyber attack on an Australian energy management and consulting firm and are threatening to release allegedly stolen data …
Thu, 07 May 2026
Queensland Department of Education confirms students staff impacted by ShinyHunters data breach
Queensland Department of Education confirms students & staff impacted by ShinyHunters data breach State education minister says “names, email …
Tue, 05 May 2026
Exclusive: Champion Homes confirms customer data compromised in ‘cyber event’
A Sydney-based home builder will contact impacted customers following the DragonForce ransomware attack. • Tue, 05 May 2026 • Security *]:clear-none …
Tue, 05 May 2026
WA rental scam surge: Tenants targeted with fake $500 discount trap
Western Australia’s tight rental market has seen a rise in scams targeting tenants, putting more people at risk, with the state’s peak body urging …
Tue, 05 May 2026
NSW Treasury cyber incident contained, impact no longer ‘significant’
The NSW government has lowered its classification of the alleged cyber attack on the state Treasury from last month. • Tue, 05 May 2026 • …
Tue, 05 May 2026
Australia, Japan commit to partnership to meet cyber security challenges and strengthen cyber defences
Australia and Japan have agreed to establish a new partnership that will enable deeper cooperation on complex cyber security challenges. Robert …
Mon, 04 May 2026
Australian Cyber Aware – As It Was 2604 – April 2026
This monthly review provides a curated summary of Australian and New Zealand cyber, privacy, and information security developments identified during …
Mon, 04 May 2026
Australian government establishes new Cyber Incident Review Board
The seven-member board will conduct post-incident reviews of “significant cyber security incidents in Australia”. • Mon, 04 May 2026 • …
Mon, 04 May 2026
Exclusive: Major Australian jewellery brand confirms cyber incident
Threat actors have claimed a cyber attack on an Australian fine jewellery retailer, claiming to have stolen over half a terabyte of data. • Mon, 04 …
Mon, 04 May 2026
Unregistered branded text messages to be labelled ‘unverified’ from 1 July
The ACMA is urging Australian businesses to register now, ahead of new anti-scam rules coming into effect later this year. • Mon, 04 May 2026 • …
Mon, 04 May 2026
NSW gov downgrades impact of alleged Treasury data breach
The impact of an alleged data breach at NSW Treasury has been “downgraded” after the incident response investigation found that “no project has been …
Mon, 04 May 2026
Exclusive: Kiwi electrical contractor confirms cyber attack
Whangarei-based firm McKay confirms unauthorised access to a single device following ransomware claims by the Mnt6 hacking group. • Mon, 04 May 2026 • …
Sun, 03 May 2026
University of Queensland aligns resilience approach across operations
The University of Queensland has bolstered its resilience to a range of incident types and threats with a coordinated and documented approach, …
Sun, 03 May 2026
Exclusive: Prime Properties listed as breach victim by M3rx ransomware
Hackers are alleged to have stolen more than 80,000 documents totalling 100 gigabytes of data from a Sydney-based property investment firm. • Fri, 01 …
Related
