November 2025
Key cyber trends straight from the desk of Cyber Intelligence
- Increase in Distributed Denial of Service (DDoS) attacks targeting AUNZ entities continues to trend. A pro-Russia ideologically motivated actor launched a campaign of DDoS attacks against NZ entities, claiming to have disrupted operational technology systems.
- So what? Organisations should consider a DDoS mitigation service to reduce the likelihood of service disruptions from DDoS attacks.
- UK defence contractor breached – in the UK, a Ministry of Defence infrastructure services contractor suffered a data breach attributed to Russian cyber extortion actor Lynx. The breach exposed sensitive MoD information, base plans, and visitor logs.
- So what? Suppliers and contractors introduce risk and complexity to an organisation’s attack surface. Organisations should conduct enhanced due diligence on new and existing contractual arrangements to assess adequacy of cyber security measures.
- Cyber threat actors continue to target Software as a Service (SaaS) vendors – last month, F5 Networks reported a “highly sophisticated nation-state actor” had maintained long-term persistent access to F5 systems. F5’s advice to customers included threat hunt advice for BRICKSTORM malware – attributed to Chinese nation state actor UNC5221.
- So what? Impacted organisations should implement F5’s advice and proactively hunt for BRICKSTORM malware on their networks.
Looking for more insights?
Our intelligence reporting services deliver timely, curated intelligence for your organisation.
The latest from CyberCX
Briefing: My data has been stolen. So now what?
What really happens when your personal data is stolen in a breach and what can you do about it? Our cyber security awareness briefing breaks down the types of information threat actors are after and practical steps to strengthen your defences. Explore our full suite of briefings to help upskill your workforce, reduce risk and transform behaviour.
Case study: Genetec completes IRAP assessment
Does your organisation need to demonstrate a robust cyber security posture? Physical security company Genetec recently engaged CyberCX experts to conduct an independent audit of its cyber security operations, completing an IRAP assessment to the OFFICIAL:Sensitive level.
A case for expeditious investigations
Imagine one morning your CEO calls. Emails work, but files and systems are down. What do you do? Our latest blog from CyberCX’s Digital Forensics and Incident Response team highlights the importance of understanding the extent of an incident, and ensuring your organisation’s systems are secure, before restoring operations.
Combating the growing cyber threat
The scale of cyber threats is ever growing – with no dimension of government, corporate or personal life unaffected. This was the message from CyberCX Global Advisory Board member and former director of the US National Security Agency (NSA), Admiral Mike Rogers (ret.), during an interview with Hugh Riminton on 10 News+ last month.
Coming up
Stay ahead with a preview of upcoming webinars, events and more.
Cyber Governance Insights webinar
Is cyber risk effectively governed at your board level? Join us if you’re a current or aspiring Board member looking to strengthen your oversight of cyber risk with the same discipline and confidence as other areas of Board responsibility.
Subscribe to Cyber Readout