January 2026
Key cyber trends straight from the desk of Cyber Intelligence
- Supply chain compromise and third-party breaches – in 2025 high-profile compromises of SaaS firms and managed service providers resulted in exposure of downstream customer data and/or enabled pivoting and lateral movement.
- So what? Increasingly, patching and risk management is not just a matter of having visibility over one’s own tech stack, but also understanding third-party platform dependencies and use of open-source components.
- Employees misused AI, threat actors abused it – organisations struggled to keep up with and regulate employees’ use of advancing AI technologies. Threat actors also developed their own malicious LLMs with applications in authoring phishing scripts, automating exploit development, generating deepfakes and conducting research and reconnaissance.
- So what? As organisations consider adopting new AI tools, they should ensure alignment between business strategy teams and those involved in security, risk management and compliance.
- Expanding scale and impact of attacks from ideologically motivated actors – 2025 saw a growing number of ideologically motivated groups targeting operational technology and industrial control systems in critical infrastructure, including in AUNZ.
- So what? Organisations must maintain incident response plans, audit network segmentation efficacy, ensure complete backups, and have appropriate DDoS protections in place. Be ready for further developments in OT targeting in 2026.
Looking for more insights?
Our intelligence reporting services deliver timely, curated intelligence for your organisation.
The latest from CyberCX
As organisations accelerate AI adoption, risk management needs to keep up
The accessibility and adoption of AI is shifting from data scientist analysis to widespread workplace use, introducing a new spectrum of operational risks and strategic opportunities as organisations redefine their workflows and human value chains. Read more about the evolution of GenAI and the risks organisations face when rolling out their AI journey.
2026 scam trends
As cyber criminals grow more sophisticated, leveraging generative AI and cutting-edge tech, spotting scams has become trickier than ever. CyberCX’s Financial Services Industry Lead, Shameela Gonzalez, shares the top threats to watch out for in 2026 and smart ways to protect yourself.
Australian Open’s Official Cyber Security Partner
CyberCX is proud to partner with Tennis Australia, returning as the Australian Open’s Official Cyber Security Partner in 2026. This marks CyberCX’s fourth year supporting the Australian Open, helping to deliver one of the world’s most iconic sporting events.
How not to get hacked
As part of ABC podcast Download This Show’s five-part series ‘Opt Out’, CyberCX’s Carter Smith shared some of the most common mistakes everyday people make with what they share online. Hear more tips in the full episode.
Subscribe to Cyber Readout