Welcome to our February 2025 cyber security roundup, designed to keep Australian SMEs informed about the latest threats and developments in the digital landscape. As your trusted MSSP, we understand the challenges faced by CIOs and CSOs in safeguarding their organisations. In a world where cyber threats are constantly evolving, staying ahead is crucial. This month, we've seen a range of incidents, from alleged university breaches to the concerning rise in data breaches affecting millions of Australians. Our focus remains on empowering you with the knowledge and solutions, particularly our leading SOCaaS offering, to mitigate these risks and ensure your business's resilience.

 Australian National University Investigating Alleged Cyber Attack:

The Australian National University (ANU) is currently investigating an alleged cyber attack. Details are still emerging, but this incident highlights the persistent threat faced by even well-resourced institutions. This serves as a stark reminder that no organisation is immune. For SMEs, this underscores the importance of robust security measures and proactive threat detection. Our SOCaaS solution provides 24/7 monitoring and rapid incident response, ensuring that potential threats are identified and neutralised before they can cause significant damage.

Hackers Publish Alleged Patient Data & CCTV Footage Following Medical Centre Cyber Incident:

A disturbing incident occurred where hackers released alleged patient data and CCTV footage following a cyber attack on a medical centre. This breach demonstrates the severe consequences of cyber attacks, particularly in sensitive sectors like healthcare. The release of personal and confidential information can lead to significant reputational damage and legal liabilities.

CrowdStrike Confirms Employee Data Leak Claims Are False:

In a welcome development, CrowdStrike has confirmed that claims of an employee data leak are false. This incident highlights the prevalence of misinformation and the importance of verifying security-related claims. While this particular instance turned out to be false, it serves as a reminder to remain vigilant and rely on trusted sources for information. It is also a good example of a company quickly and effectively addressing a potentially damaging rumour.

APRA Doubles Down on Cyber Resilience Warning:

The Australian Prudential Regulation Authority (APRA) has reiterated its strong stance on cyber resilience, issuing further warnings to regulated entities. This emphasises the growing regulatory pressure on businesses to enhance their cyber security posture. For SMEs, this means that compliance and robust security measures are no longer optional.

Data Breaches Compromising More Than One Million Australians Surged in Recent Years:

A concerning trend revealed that data breaches affecting over one million Australians have surged in recent years. This statistic underscores the increasing sophistication and frequency of cyber attacks. For SMEs, this means that the risk of data breaches is higher than ever.

Slater and Gordon Refer Malicious Email to Victoria Police:
Slater and Gordon referred a malicious email to Victoria Police. This action shows the seriousness of even seemingly small cyber incidents. This is a very good reminder to all SME's that all cyber incidents should be taken seriously and reported to the proper authorities.

The events of February 2025 serve as a clear indicator of the ongoing challenges in cyber security. The increasing sophistication of attacks and the potential for widespread data breaches highlight the need for all organizations, particularly SMEs, to maintain a strong security posture. Staying informed about current threats, understanding regulatory expectations, and implementing robust security practices are vital steps in mitigating risk and protecting valuable data. Continuous vigilance and adaptation to the evolving threat landscape are essential for maintaining operational resilience.