Davos 2026 revealed an elite world torn between ambition and anxiety as AI promises growth while threatening jobs, power grids and geopolitics. From warnings of mass workforce disruption to energy bottlenecks and strategic rivalry, leaders framed AI as both engine risk shaping decades ahead
The Everest ransomware group has breached ASRock Rack, a major server hardware vendor, stealing 509GB of sensitive data including firmware, BIOS, and other critical files. The breach creates a significant supply chain risk, potentially allowing attackers to embed vulnerabilities in server hardware.
Berlin-based GeneralMind, founded by the team behind German unicorn Razor Group, has secured $12 million in pre-seed funding to develop its AI-driven "System of Action" for automating enterprise workflows. The platform acts as an autopilot for repetitive white-collar tasks across ERPs and email.
Melbourne-based broker ThinkMarkets has been hit by the Chaos ransomware group, which stole 512GB of data. The breach includes employee passports and customer KYC records, posing a major risk to the Australian financial services firm and its clients worldwide.
Cyber News Centre's cyber update for 12th December 2025: Melbourne-headquartered online trading broker ThinkMarkets has become the latest Australian financial services firm to be targeted by a ransomware attack, with the emerging Chaos group claiming to have stolen a significant volume of sensitive data.
ThinkMarkets is a multi-regulated online brokerage firm established in 2010, with headquarters in Melbourne and London. The company provides CFD trading services across forex, stocks, and cryptocurrencies to clients in over 165 countries and holds 10 regulatory licenses, including from the Australian Securities and Investment Commission (ASIC).
Update: The Chaos ransomware group listed ThinkMarkets on its dark web leak site earlier this week, claiming to have exfiltrated 512 gigabytes of data from the Australian broker. The threat actors have reportedly published the data online after ransom negotiations failed. The compromised information is extensive, containing highly sensitive corporate and personal records. According to security researchers who have viewed the data, the leak includes internal human resources files, details of customer disputes, legal advice, and confidential trading information.
Most alarmingly, the breach exposed scans of employee passports and know-your-customer (KYC) verification documents for a number of the firm’s clients. The Chaos group, first observed in February 2025, is a relatively new ransomware-as-a-service (RaaS) operation actively recruiting affiliates on Russian-speaking forums. The group employs a double-extortion model, threatening to publish stolen data if ransom demands, which have been as high as $300,000 in previous attacks, are not met. ThinkMarkets has not yet issued a public statement on the incident.
Why it Matters: This attack on an ASIC-regulated broker highlights the significant and growing threat to Australia’s financial services sector. The exfiltration of passport scans and KYC documents creates a severe risk of identity theft and financial fraud for both employees and clients of ThinkMarkets. For Australian investors, it is a stark reminder that even regulated financial entities are vulnerable to sophisticated cyber attacks.
The incident also underscores the operational risk posed by emerging RaaS groups like Chaos, which can quickly scale their attacks and cause widespread damage. The breach serves as a critical warning for the entire financial supply chain, demonstrating that robust security measures are essential to protect sensitive client data and maintain trust in the digital economy.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
The Everest ransomware group has breached ASRock Rack, a major server hardware vendor, stealing 509GB of sensitive data including firmware, BIOS, and other critical files. The breach creates a significant supply chain risk, potentially allowing attackers to embed vulnerabilities in server hardware.
A newly disclosed vulnerability in Schneider Electric's Foxboro DCS, a widely used industrial control system, could allow attackers to disrupt critical infrastructure operations. The flaw, originally from Intel, affects energy and manufacturing sectors worldwide, including Australia.
Microsoft has issued an emergency patch for a critical zero-day vulnerability (CVE-2026-20805) in its Windows operating system that is being actively exploited by attackers. The flaw affects all supported versions of Windows.
Japanese automaker Nissan is the latest victim of the Everest ransomware group, which claims to have stolen 900GB of sensitive data. The breach, announced January 10, threatens internal records, dealer info, and possibly customer data —raising serious concerns for its Australian operations.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
