CyberCX

📥 From inbox management and meeting transcripts to chatbots and virtual assistants, AI has become ubiquitous in the workplace – and the trend is only heading in one direction.   Organisations are adopting AI tools and systems at breakneck speed. But without proper governance policies, staff education and authorised AI tools, organisations invite the emerging risk of shadow AI into their environments.   In the latest blog from our Secure AI series, Dimitri Vedeneev and Henry Ma unpack how shadow AI becomes an inevitable outcome when technology teams do not focus on releasing AI tooling to their workforce in a timely manner. "Technology teams that cause undue friction in this space are fighting a losing battle," they warn.    ➡️ Read the blog to learn how your organisation can minimise shadow AI: https://lnkd.in/dnQ4F3cG

Is your organisation prepared for the security challenges that AI technologies introduce? 🤖 In our recent webinar, Henry Ma shared practical insights and guidance on developing a tailored approach to Secure AI that considers these challenges alongside an organisation's context and use cases. Joined by our Executive Director of Secure AI, Dimitri Vedeneev, Henry explored why AI is no longer just a buzzword: "Organisations across sectors are investing heavily in generative AI to stay competitive, yet a rapid rollout can expose them to data leaks, regulatory non‑compliance and a host of technical threats such as prompt injection or model poisoning."   ▶️ Watch the webinar on demand to hear more from Henry and Dimitri on how organisations can navigate AI adoption without losing sight of security: https://lnkd.in/dpsYBtKz

⏱️ Organisations are adopting Artificial Intelligence tools and systems at breakneck speed, delivering clear cost saving and efficiency benefits and driving workers into higher value roles. But without proper governance policies, staff education, and authorised AI tools, this pace of adoption invites the emerging risk of shadow AI into an organisation’s environment.   With data spills involving unsanctioned AI tools on the rise, our latest edition of C-Suite Cyber unpacks how a slow release of AI tooling in the workplace can give rise to shadow AI and outlines why the AI tool approval process must move faster than the business’ instinct to bypass it.   Learn how shadow AI can impact your organisation, along with practical steps to reduce shadow AI to an absolute minimum ⬇️

🤖 With AI capabilities expanding across organisational systems and workflows, the risks associated with their use extend beyond technical considerations to include regulatory, ethical, strategic, and operational impacts. In the latest blog from our Secure AI series, CyberCX's Dimitri Vedeneev, Henry Ma and Katherine Walsh warn that without clear decision-making structures and accountabilities defined, organisations face inconsistent practices, misaligned use cases, and avoidable security exposures. They add, "As AI adoption accelerates, organisations need practical and flexible governance frameworks to maintain consistent oversight, amidst the growing need to uplift controls and diverging regulatory expectations." Five critical success factors for effective implementation are highlighted to support the continuous and evolving adoption of AI safely, securely and responsibly: 🔹 Establish a diverse AI steering committee 🔹 Ground AI adoption on strong ethical principles 🔹 Keep AI policies and standards simple 🔹 Establish a consistent AI development lifecycle 🔹 Choose meaningful metrics ➡️ Read more in the blog here: https://lnkd.in/d3yMneaG

📺 Former producer and journalist Ashley Carter has seen firsthand where most organisations fall short during a crisis.   From turning stories around in hours, to managing intense pressure and shaping narratives, Ashley's newsroom experience has never been more relevant in her current role as Strategic Communications Manager at CyberCX.    "My job was to secure the 'impossible' interview through genuine trust and care, speaking with people during some of the most stressful or heartbreaking moments of their lives," says Ashley.   Drawing on her experience from both the newsroom and the boardroom, Ashley has shared the three areas where most organisations fall short during a crisis. Read more in our blog: https://lnkd.in/dZUq8-Nj

📖 CyberCX's 2026 Threat Report revealed that organisations, despite global law enforcement efforts, faced a new wave of cyber attacks in the last 12 months that crippled their systems for days, weeks, or even longer.    "Our team sits on the front line of incidents like these to kick out the bad guy," said Hamish Krebs, Global Executive Director of Digital Forensics and Incident Response. "We have analysed some of the most serious incidents from the past year, and the theme is clear: the threats are bigger and better resourced than they ever have been."   "The rise and increasing adoption of AI has only added more fuel to this fire. This means that ransomware, scams, and business email compromise are growing in velocity," said Hamish. "The reality is: malicious actors are rapidly evolving their methods and techniques to harm victims and achieve their objectives, which means defenders must also evolve to stay ahead of the threat."   Download the full Threat Report for real world practical insights to protect your organisation and better prepare for the year ahead: https://lnkd.in/dTPes7dP

CyberCX's STAckerCon was back and bigger than ever in 2026, bringing together 180 specialists from across ANZ, the UK and US in Sydney for two action-packed days of talks, training and skill-testing.   🎓 We were also thrilled to welcome CyberCX's PhD scholarship students from our partnership with Flinders University to STAckerCon7's agenda, which saw expert speakers deliver 28 talks on everything from tracking an elite Russian hacker, to unveiling CyberCX's latest in-house tooling for Attack Surface Discovery, to lessons learned from Red Teaming some of the largest organisations in the ANZ region.   Conference-goers participated in training for some of the most in-demand STA services and skill areas, and workshops including security architecture, C-programming, capture the flag competitions, and our always-popular lockpicking village 🔓   "I'm incredibly proud of our talented team for hosting another exceptional STAckerCon event," said Jason Edelstein, Executive Director STA. "Together we've built a fun and engaging internal conference with content and activities rivalling leading regional events, that only improves year on year."   Our thanks to all of our speakers, workshop leaders and attendees (both in person and virtual) for an incredible two days of knowledge sharing and upskilling - making STAckerCon7 our best yet! 👏

How can organisations navigate Artificial Intelligence adoption without losing sight of security? Join CyberCX experts Dimitri Vedeneev and Henry Ma in our upcoming webinar on 24 March to learn why AI is no longer just a buzzword, but critical for organisations to keep pace with technological transformation.   Organisations across sectors are investing heavily in generative AI to stay competitive, yet a rapid rollout can expose them to data leaks, regulatory non‑compliance and a host of technical threats such as prompt injection or model poisoning.   The shift from traditional machine‑learning to large‑language models has amplified these risks, making it harder to interpret outputs, ensure transparency, and maintain security controls, especially when third‑party vendors are involved.   Register for the webinar to hear Dimitri and Henry share practical insights and guidance on developing an approach to Secure AI that considers your organisation’s context, use cases, and the specific security challenges these technologies introduce: https://lnkd.in/dGSmkMCE

🎤 At Eftsure's 'On the Defense' discussion live in Melbourne, CyberCX CFO Kevin O'Sullivan highlighted that finance leadership extends to supporting the business in managing cyber risk and building cyber resilience.   "Cyber resilience is a leadership issue, not an IT one," said Kevin. "Cyber risk thrives in the gap between process and pressure - especially in complex, distributed organisations."   "CFOs are uniquely positioned to lead here - not because we’re cyber experts, but because we understand how the business creates value, where disruption hurts most, and how trade‑offs between efficiency, risk, and resilience are actually made."   Kevin added that data reinforces the pattern, with CyberCX’s 2026 Threat Report revealing that business email compromise still accounted for ~23% of incidents CyberCX responded to in 2025 - driven more by process and behavioural pressure than by broken technology.   Our thanks to fellow panelist Bastien Treptel and host Shanna Davis for joining Kevin in this engaging discussion.

🎤 At Palo Alto Networks Ignite on Tour in Sydney, Jack Rendalls shared how CyberCX is transforming Security Operations from a reactive, manual model into an AI-driven, autonomous powerhouse, by leveraging Palo Alto Networks' Cortex XSIAM.   "As the volume of security alerts grow, the shift from reactive threat management to autonomous, AI-driven solutions enables the scale required to operate effectively that cannot be achieved with other tooling," said Jack. "Smart scoring, playbook automation, and autonomous triage are enabling our XSIAM powered Security Operations Centre (SOC) to manage over 165 billion events a month."   "CyberCX's experience is that we have been able to reduce SOC analyst workload and alert fatigue by taking advantage of automation and AI in the platform," he continued. "This has allowed us to shift analyst focus to higher value outcomes for customers such as threat hunting and customised playbooks. XSIAM as a unified environment has given us a scalable SOC operations platform that we think is defining the future of our SOC operations". CyberCX was proud to support Ignite on Tour, an industry-leading event equipping attendees with the strategy and tools needed to protect their organisation’s digital way of life.