Lateral Defence

ASD Annual Cyber Threat Report 2024-2025

www.cyber.gov.au/about-us/vie...

Ransomware hackers strike pharmacy as tactics 'evolve' Small businesses are being warned to re-evaluate their cybersecurity systems after hackers targeted a regional Queensland pharmacy.

Small businesses are being warned to re-evaluate their cybersecurity systems after hackers targeted a regional Queensland pharmacy.

Information age warfare in 2025 - Australian Defence Magazine What role will cyber, space and electromagnetics play in the 2025 timeframe?

"Information age warfare in 2025" (back in 2019)

www.australiandefence.com.au/events/event...

Enjoying OSINT Symposium 2025 today (and tomorrow)

Software packages with more than 2 billion weekly downloads hit in supply-chain attack Incident hitting npm users is likely the biggest supply-chain attack ever.

Software packages with more than 2 billion weekly downloads hit in supply-chain attack

Bank Hacking Has Doubled Since 2023 And Investors Are Getting Spooked Investors are looking to see which banks have the best cyber resiliency.

Bank Hacking Has Doubled Since 2023 And Investors Are Getting Spooked

Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage System

www.oaic.gov.au/privacy/aust...

Enforcing existing laws that *already require* them to delete unneeded data would be helpful. This is an existing requirement under Australian Privacy Principle 11.2.

Forcing companies to delete data would remove cyber 'honey pot', experts say Crackdowns and lawsuits over data breaches take years. Experts say "the right to erasure" would help individuals hold corporations to account.

Experts say forcing companies to delete data would remove cybercrime 'honey pot'

Post-Quantum Cryptography in Kubernetes-

Hundreds of laptops, bank accounts linked to North Korean fake IT workers scheme seized in major crackdown North Korean operatives worked with individuals in the US, China, United Arab Emirates and Taiwan to successfully obtain employment with more than 100 US companies.

Do you know your remote tech contractors?

Hundreds of laptops, bank accounts linked to North Korean fake IT workers scheme seized in major crackdown.

Qantas says 'significant' portion of 6m customers' data likely stolen Qantas is warning a "significant" amount of customer data has likely been stolen from its records during a cyber attack against the airline on Monday.

Qantas hit by cyber attack, leaving 6 million customer records at risk of data breach

From cheap parking to selling data: Former student charged over university hacking A former student is accused of hacking her alma mater, altering marks and threatening to sell data.

From cheap parking to selling data: Former student charged over university hacking

Viasat identified as victim in Chinese Salt Typhoon cyberespionage, Bloomberg News reports Viasat Inc has been identified as a victim of the Chinese-linked Salt Typhoon cyberespionage operation during last year's presidential campaign, Bloomberg News reported on Tuesday.

Viasat identified as victim in Chinese Salt Typhoon cyberespionage, Bloomberg News reports reut.rs/4629XWi

Apple announces that TLS client connections in version 26+ will be using hybrid PQ X25519MLKEM768 by default

support.apple.com/en-us/122756

India's alarm over Chinese spying rocks the surveillance industry Global makers of surveillance gear have clashed with Indian regulators in recent weeks over contentious new security rules that require manufacturers of CCTV cameras to submit hardware, software and source code for assessment in government labs, official documents and company emails show.

India's alarm over Chinese spying rocks the surveillance industry reut.rs/45AoDvs

GPT geolocation — Why it’s a teacher & not a usurper In this article, I’d like to explore a rather impressive application of AI from a practical, observational perspective — geolocation using…

Geolocating with GPT: Lessons in Analysis, Not Automation
#OSINT

New EU vulnerability database will complement CVE program, not compete with it, says ENISA After the CVE’s program’s near-death experience in April, might the Europeans be looking for a more reliable long-term system?

New EU vulnerability database will complement CVE program, not compete with it, says ENISA

CVE program averts swift end after CISA executes 11-month contract extension After DHS did not renew its funding contract for reasons unspecified, MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program was slated for an abrupt shutdown on April 16, which would ...

Hmm, missed this last month:
“CVE program averts swift end after CISA executes contract extension”

Digital security doesn't start and end with tools, it's just as often about a mindset.

Hackers have 'compromised' almost 100 bank employees, experts say Cybercriminals have stolen and shared almost 100 staff logins for Australia's Big Four banks, putting those businesses at a higher risk of mass data theft and ransomware attacks, cyber security resear...

Cybercriminals have stolen almost 100 staff logins at the Big Four banks, experts say

Infostealers Harvest Over 30,000 Australian Banking Credentials Dvuln researchers highlighted the growing impact of infostealers on the cybercrime landscape, enabling attackers to bypass traditional defenses

Infostealers Harvest Over 30,000 Australian Banking Credentials

Google Spoofed Via DKIM Replay Attack: A Technical Breakdown Learn how a convincing Google spoof used a DKIM replay attack to bypass email security and trick users with a fake subpoena. A real-world phishing example you need to see.

Google Spoofed Via DKIM Replay Attack:
A Technical Breakdown

easydmarc.com/blog/google-...

JUICYJAM: How Thai Authorities Use Online Doxxing to Suppress Dissent - The Citizen Lab A sustained, coordinated social media harassment and doxxing campaign – which we codenamed JUICYJAM – targeting the pro-democracy movement in Thailand has run uninterrupted, and unchallenged, since at...

JuicyJam: How Thai Authorities Use Online Doxxing to Suppress Dissent

citizenlab.ca/2025/04/how-...

Document My Pentest: you hack, the AI writes it up! Tired of repeating yourself? Automate your web security audit trail. In this post I'll introduce a new Burp AI extension that takes the boring bits out of your pen test. Web security testing can be a

Document My Pentest: you hack, the AI writes it up!

portswigger.net/research/doc...

How I Used AI to Create a Working Exploit for CVE-2025-32433 Before Public PoCs Existed A step-by-step walkthrough of how I leveraged AI to analyze, understand, and exploit the Erlang SSH pre-authentication vulnerability (CVE-2025-32433) without any existing public proof of concept. Lear...

"How I Used AI to Create a Working Exploit for CVE-2025-32433 Before Public PoCs Existed"

platformsecurity.com/blog/CVE-202...

Model Context Protocol has prompt injection security problems As more people start hacking around with implementations of MCP (the Model Context Protocol, a new standard for making tools available to LLM-powered systems) the security implications of tools built ...

Model Context Protocol has prompt injection security problems

The “S” in MCP Stands for Security Spoiler: it doesn’t. But it should.

The “S” in MCP Stands for Security

Bug hunter obtains an SSL cert for Alibaba Cloud in 5 steps : 10 other certificates 'were mis-issued and have now been revoked'

Since learning of that flaw, SSL.com has revoked 11 wrongly issued certificates – one of them for Alibaba.