-
BMW acknowledges cyber incident, safety audit documents released by hacker
Luxury car manufacturer BMW has confirmed a cyber incident involving one of its American third-party service providers. The Everest ransomware group claimed responsibility for the breach, stating they accessed “critical BMW audit documents” in a post dated 14 September. BMW has acknowledged that the incident pertains to its supply chain and involves a data breach…
-
Collins Aerospace cyberattack critical alert for Australian airports
A cyber attack targeting Collins Aerospace, the maker of boarding and check-in systems used by several major European airports, has resulted in significant disruptions, including flight cancellations and numerous delays over the weekend. RTX, the parent company of Collins Aerospace, acknowledged a “cyber-related disruption” affecting its software at multiple airports, with Heathrow Airport, Dublin Airport,…
-
European airports disrupted by supply chain cyberattack
A cyberattack on a provider of check-in and boarding systems caused significant disruptions at several major European airports on Saturday, including London’s Heathrow, the busiest airport on the continent. This incident resulted in numerous flight delays and cancellations, marking yet another instance in a series of cyberattacks targeting various sectors worldwide, from healthcare and defence…
-
Optus Triple Zero incident “unlikely” to have contributed to baby’s death
An Optus network failure is now deemed “unlikely” to have contributed to the tragic death of an eight-week-old baby in South Australia, according to the state’s policy agency. In a statement released around midday AEST on Sunday, South Australia Police indicated that preliminary investigations revealed a relative of the baby successfully placed a call to…
-
Thirteen-hour outage of Triple Zero service due to Optus firewall upgrade
Optus CEO Stephen Rue stated that a “regular” firewall upgrade at 12.30am on Thursday led to a failure of Triple Zero calls on the network for 13 hours, before the change was rolled back. During a media conference on Saturday afternoon, Rue confirmed an earlier report by the Australian Financial Review, identifying a “firewall misconfiguration”…
-
Heidelberg Golf Club reportedly targeted by Kairos ransomware group
The Kairos ransomware group has claimed to have successfully hacked the Heidelberg Golf Club, located in the Melbourne suburb of the same name. They have shared documents and personal information that appear to have been stolen from the club. Kairos typically refrains from editorialising about its operations, opting instead to share revenue details obtained from…
-
FileFix attack tricks users into opening infected images
A new social engineering attack, dubbed “FileFix,” has been uncovered by Acronis’ Threat Research Unit. This sophisticated campaign is a refined version of traditional ClickFix attacks, where threat actors manipulate victims into executing malicious commands and installing malware on their devices. Unlike previous methods that relied on fake CAPTCHA prompts or Windows Run dialogues, FileFix…
-
Cyber incidents in New South Wales government related to third parties have increased fourfold over the past two years
Cyber incidents linked to third-party systems used by the New South Wales (NSW) government have more than quadrupled over the past two years, according to figures obtained by iTnews. In the financial year 2023-24, there were 17 cyber incidents involving third-party systems across state government agencies, which is more than double the eight incidents recorded…
-
Kmart Australia’s implementation of facial recognition technology violated privacy protections
Kmart Australia has faced significant scrutiny after the Office of the Australian Information Commissioner (OAIC) ruled that the retailer breached the privacy of potentially “hundreds of thousands” of individuals by using a facial recognition technology system to detect refund fraud over a two-year period. The OAIC found that Kmart “indiscriminately” collected personal and “sensitive biometric…
-
NSW government prohibits production / distribution of sexually explicit deepfake content
The New South Wales government recently passed amendments to the Crimes Act 1900 through the Crimes Amendment (Intimate Images and Audio Material) Bill 2025 on 18 September. This new legislation criminalises the production of sexually explicit deepfakes that aim to mimic real individuals, imposing a penalty of up to three years in prison. Additionally, the…
