TechDay Australia - Australia's technology news network

Advanced Persistent Threat (APT) Stories

Australian Stories

Advanced Persistent Threat (APT) stories

Global Stories

Advanced Persistent Threat (APT) stories

Bitdefender finds FamousSparrow energy sector campaign
Supply Chain

Bitdefender finds FamousSparrow energy sector campaign

Repeat breaches exposed an Azerbaijani oil and gas operator to espionage as FamousSparrow exploited Microsoft Exchange flaws for two months.

By Sean Mitchell 4 min read This month
Google says AI-powered cyberattacks are already here
Malware

Google says AI-powered cyberattacks are already here

AI is now being used to write exploits and malware, with Google saying it has traced the first zero-day linked to machine assistance.

By Joseph Gabriel Lagonsin 5 min read This month
AI now routine in cyber attacks, Google report finds
Malware

AI now routine in cyber attacks, Google report finds

Security teams face a broader threat as criminals and state-backed actors use generative AI to speed hacks, phishing and malware.

By Joseph Gabriel Lagonsin 4 min read This month
State actors target defence suppliers in long game
Firewalls

State actors target defence suppliers in long game

Small defence contractors are left exposed as state-backed hackers spend years mapping supply chains and laying covert access routes before striking.

By Joseph Gabriel Lagonsin 5 min read This month
China-aligned TA416 resumes spying on EU & Mideast
Phishing

China-aligned TA416 resumes spying on EU & Mideast

Diplomatic missions in Europe and the Middle East face renewed PlugX-backed espionage as TA416 shifts tactics and targets amid regional tensions.

By Sean Mitchell 4 min read Last month
DeepLoad malware steals credentials via ClickFix campaign
Malware

DeepLoad malware steals credentials via ClickFix campaign

Businesses face credential theft and reinfection risks as DeepLoad hides inside trusted Windows processes and evades routine clean-up.

By Joseph Gabriel Lagonsin 4 min read Last month
Commvault adds threat-hunting tools to backup scans
Data Protection

Commvault adds threat-hunting tools to backup scans

Existing Threat Scan customers get new free tools to spot ransomware in backups before restoration, reducing the risk of reinfecting production systems.

By Mark Tarre 3 min read Tue, 31st Mar 2026
China-linked Red Menshen hides inside telecoms networks
Unified Communications

China-linked Red Menshen hides inside telecoms networks

Dormant implants in carrier systems could expose subscriber data and signals across Europe and APAC, Rapid7 warned.

By Joseph Gabriel Lagonsin 4 min read Fri, 27th Mar 2026
NCC Group warns Iran cyber threats spread worldwide
Gaming

NCC Group warns Iran cyber threats spread worldwide

Iran-linked cyber attacks are spreading beyond the Middle East, with firms tied to Israel or the US warned they face heightened global risk.

By Joseph Gabriel Lagonsin 4 min read Tue, 24th Mar 2026
Iranian cyber shift raises risk to Western infrastructure
Distributed Denial of Service

Iranian cyber shift raises risk to Western infrastructure

Iranian state-aligned hackers are shifting from spying to destructive cyber strikes, putting Western critical infrastructure on high alert.

By Shannon Williams 6 min read Fri, 13th Mar 2026
Fake Red Alert app used in Android spyware smishing
Endpoint Protection

Fake Red Alert app used in Android spyware smishing

Attackers push fake Red Alert Android app via SMS, turning Israel rocket warning tool into spyware that steals messages, contacts and location.

By Sean Mitchell 4 min read Fri, 13th Mar 2026
Conflict sparks surge in Middle East cyber espionage
Phishing

Conflict sparks surge in Middle East cyber espionage

New research links Iran conflict to a swift surge in tightly targeted cyber espionage across Middle Eastern governments and embassies.

By Mark Tarre 4 min read Thu, 12th Mar 2026
Google report warns identity is weak link in cloud
Malware

Google report warns identity is weak link in cloud

Attackers are ditching malware for stolen identities, misconfigurations and abused AI tools, Google warns in its latest cloud threat report.

By Sean Mitchell 4 min read Wed, 11th Mar 2026
Kernel in the crosshairs: The BlackSanta threat campaign targeting recruitment workflows
Storage

Kernel in the crosshairs: The BlackSanta threat campaign targeting recruitment workflows

A stealthy BlackSanta malware spree is hijacking HR recruitment workflows, killing endpoint defence tools and exfiltrating sensitive data.

By Aditya K. Sood 4 min read Wed, 11th Mar 2026
Google disrupts China-linked cyber espionage on telecoms
Malware

Google disrupts China-linked cyber espionage on telecoms

Google says it has crippled a China-linked cyber espionage group accused of hacking telecoms and governments in at least 42 countries.

By Sean Mitchell 3 min read Thu, 26th Feb 2026
LockBit 5.0 ransomware targets Windows, Linux, ESXi
Malware

LockBit 5.0 ransomware targets Windows, Linux, ESXi

New LockBit 5.0 ransomware hits Windows, Linux and ESXi in single campaigns, widening blast radius across mixed and virtualised environments.

By Catherine Knowles 3 min read Wed, 18th Feb 2026

Stories from Other Regions

Advanced Persistent Threat (APT) stories

OT downtime costs firms up to GBP £5 million, survey finds
Malware

OT downtime costs firms up to GBP £5 million, survey finds

Operational technology outages are leaving most manufacturers and critical infrastructure firms facing losses of up to GBP £5 million, a survey found.

By Kaleah Salmon 4 min read Last month