Stay Ahead of Cyber Threats with Expert Insights
Practical cybersecurity guidance, incident response expertise, and industry intelligence for Australian law firms and businesses.
The Legal Cyber Brief — monthly cyber intelligence for law firm leaders. Threats, regulatory shifts, and practical tools from the field. No fluff.
CYOODA - Newsletter
68 days. That’s how long attackers are hiding in Australian networks before anyone notices.
Your device management tool just became a weapon. This fortnight: Iran-linked hackers wipe 200,000 devices using Microsoft's own admin tools, an Australian healthcare software vendor hit by ransomware this week,...
Lexis Nexis Breaches – and your data maybe in the dump
Your legal research tool just became a threat vector. This fortnight: a breach that hits law firms at the supply chain, Australia's first Federal Court cyber penalty, an elite school...
Court Transcripts offshored without authorisation
Third-party vendors are having a bad month. Court transcripts offshored without authorisation, a fintech platform leaking 444,000 borrowers' data, and mandatory ransomware reporting is now in full enforcement. Here's what...
Thoughts and articles by Cyooda
All
- All
- Cybersecurity
- Detection Engineering
- How To Guides
- Ransomware Insights
- Security Insights
What Can Be Recovered From an iPhone in a Forensic Investigation
When an iPhone becomes central to a legal matter such as employment dispute, family law, commercial litigation, clients often ask the same question: what can actually be recovered? The answer...
The First 72 Hours: What Really Happens When a Law Firm Gets Breached
The Call Nobody Wants It's 11:47pm on a Friday. A managing partner's name lights up your phone. "Something's wrong. The system's locked us out. There's a message on the screen...
118 Australian Businesses Hit by Ransomware in 2025 | What Leaders Must Know
According to data tracked by ransomware.live, 118 Australian organisations have already been publicly impacted by ransomware this year. The victims span almost every sector of the economy - airlines, telecommunications...
Australian Clinical Labs Case: Lessons in Cyber Response & Communication
The judgment in brief In this case, ACL acquired the assets of Medlab Pathology Pty Ltd on 19 December 2021. It assumed control of Medlab's IT systems, which over 223,000...
- « Previous
- 1
- 2
- 3
Cybersecurity news from around the world
![[Aggregator] Downloaded image for imported item #73388](https://cyooda.com/wp-content/uploads/bb-plugin/cache/apple-update-square-c4b79d4983770df9416215854e05d806-.webp "[Aggregator] Downloaded image for imported item #73388")
Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild
Apple on Friday released security updates for iOS, iPadOS, macOS, tvOS, watchOS, visionOS, and its Safari web browser to address two security flaws that it said have been exploited in...
![[Aggregator] Downloaded image for imported item #73315](https://cyooda.com/wp-content/uploads/bb-plugin/cache/ai-square-688edccd3afcaf4b934a7bd22fcd3b46-.webp "[Aggregator] Downloaded image for imported item #73315")
Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work
The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions and agentic browsers like ChatGPT Atlas. Employees are leveraging the...
![[Aggregator] Downloaded image for imported item #73287](https://cyooda.com/wp-content/uploads/bb-plugin/cache/Bugs-1024x576-square-549cd4b0c83e8bbecebc7ba30d459003-.jpg "[Aggregator] Downloaded image for imported item #73287")
MITRE shares 2025’s top 25 most dangerous software weaknesses
MITRE has shared this year's top 25 list of the most dangerous software weaknesses behind over 39,000 security vulnerabilities disclosed between June 2024 and June 2025. The list was released...
![[Aggregator] Downloaded image for imported item #69964](https://cyooda.com/wp-content/uploads/bb-plugin/cache/LastPass-headpic-1024x576-square-ea707a72ed4991a6f4c760549ccef41a-.jpg "[Aggregator] Downloaded image for imported item #69964")
UK fines LastPass over 2022 data breach impacting 1.6 million users
The UK Information Commissioner's Office (ICO) fined the LastPass password management firm £1.2 million for failing to implement security measures that allowed an attacker to steal personal information and encrypted...
![[Aggregator] Downloaded image for imported item #72462](https://cyooda.com/wp-content/uploads/bb-plugin/cache/msteams-square-7efc9a029636400ef752f18f2409ee26-.webp "[Aggregator] Downloaded image for imported item #72462")
MS Teams Guest Access Can Remove Defender Protection When Users Join External Tenants
Cybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams. "When users...
![[Aggregator] Downloaded image for imported item #72460](https://cyooda.com/wp-content/uploads/bb-plugin/cache/OpenAI-1024x512-square-ad21dbb10e5f667d0872c60241c87ad1-.jpg "[Aggregator] Downloaded image for imported item #72460")
OpenAI discloses API customer data breach via Mixpanel vendor hack
OpenAI is notifying some ChatGPT API customers that limited identifying information was exposed following a breach at its third-party analytics provider Mixpanel. Mixpanel offers event analytics that OpenAI uses to...
![[Aggregator] Downloaded image for imported item #72220](https://cyooda.com/wp-content/uploads/bb-plugin/cache/windows-square-5c4f64bcb260331644dce41db4e35fd2-.webp "[Aggregator] Downloaded image for imported item #72220")
ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access
A recently patched security flaw in Microsoft Windows Server Update Services (WSUS) has been exploited by threat actors to distribute malware known as ShadowPad. "The attacker targeted Windows Servers with...
![[Aggregator] Downloaded image for imported item #71591](https://cyooda.com/wp-content/uploads/bb-plugin/cache/google-phishing-square-bfeb57e81f74497589a1be128a45f581-.webp "[Aggregator] Downloaded image for imported item #71591")
Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform
Google has filed a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against China-based hackers who are behind a massive Phishing-as-a-Service (PhaaS) platform...
Lvl 17, Angel Place,
123 Pitt Street,
Sydney
NSW 2000
(02) 7230 1350
The Legal Cyber Brief — monthly cyber intelligence for law firm leaders.