April 2026
Key cyber trends straight from the desk of Cyber Intelligence
- Kinetic strikes on data centres reflect worsening threat to digital supply chains: Throughout March, Iranian strikes targeted AWS data centres in the UAE and Bahrain.
- So what? Targeting of data centres reflects a broader global trend where civilian critical infrastructure is determined to be a legitimate target for disruption. Organisations should consider the implications for their digital supply chain security and incident response planning in the event of further deterioration in the geopolitical environment.
- Both Australia and the US have taken measures to restrict high risk foreign vendors. In Australia, this involved proposing amendments to the Security of Critical Infrastructure (SOCI) Act that would allow the government to restrict critical infrastructure operators from procuring from high-risk vendors.
- So what? AUNZ organisations can prepare by pre-emptively aligning with the Australian Department of Home Affairs’ guidance under the Technology Vendor Review Framework.
- New Zealand Government proposes regulating critical infrastructure security in line with Australia’s SOCI Act, citing assessments that the country’s national cyber security posture ranks far below that of its Five Eyes peers.
- So what? New Zealand organisations should consider pre-emptively aligning internal security and risk management activities to the best practice guidelines set out by Australia’s Critical Infrastructure Security Centre (CISC), particularly in relation to managing foreign ownership, control and influence (FOCI) risk.
Looking for more insights?
Our intelligence reporting services deliver timely, curated intelligence for your organisation.
The latest from CyberCX
AI governance: From principles to practice
As AI adoption accelerates, organisations need practical and flexible governance frameworks. In this blog, our experts propose a modular, technology agnostic AI-governance framework and five critical success factors organisations should consider for effective, secure and responsible AI implementation.
Before the breach: How data exposure enables cyber attacks
What information about your organisation is already in the hands of threat actors? While a Security Operations Centre addresses incidents within your environment, it’s limited to data originating from your organisation. Learn how data exposure can happen without a traditional breach, how it’s exploited, and how cyber intelligence can uncover it.
Collingwood Football Club’s Official Cyber Security Partner
CyberCX has announced an expanded partnership with the Collingwood Football Club as its Official Cyber Security Partner. Learn how we’re working closely with Collingwood to strengthen cyber defences by preventing and detecting threats and enhancing awareness and capabilities across the organisation.
Strengthen your AI security posture
CyberCX’s AI penetration testing simulates large language model (LLM) jailbreaks, prompt coercion, and toolchain abuse, mapping findings to OWASP LLM Top 10 to assure data protection, resilience, and compliance. Learn how we can assess your AI to uncover real risks so you can deploy securely and confidently.
Shadow AI: Why your biggest AI threat may come from within
Organisations are rapidly adopting AI tools and systems,. but without proper governance policies, staff education and authorised AI tools, they invite the emerging risk of shadow AI into their environments. Read the blog to learn how your organisation can minimise this risk.
Subscribe to Cyber Readout