Australia is entering the age of agentic intelligence as startups like Firmus Technologies and Sharon AI build sovereign compute, renewable powered data infrastructure and AI platforms. Infrastructure is accelerating while enterprise adoption remains slow, creating a widening national gap.
A wave of cyber attacks disrupted Australia’s defence and industry sectors, as confidential military data and industrial networks were exposed by state backed and criminal groups. ASIO’s director warns these persistent threats now demand urgent, coordinated cyber security action.
GlobalLogic has confirmed that the Clop ransomware group stole the personal and financial data of more than ten thousand current and former employees after exploiting critical vulnerabilities in Oracle’s E Business Suite platform.
GlobalLogic has confirmed that the Clop ransomware group stole the personal and financial data of more than ten thousand current and former employees after exploiting critical vulnerabilities in Oracle’s E Business Suite platform.
Cyber News Centre's cyber update for 13th November 2025: GlobalLogic, a digital engineering firm owned by Hitachi, has confirmed its systems were compromised in a widespread data theft campaign that targeted Oracle’s E Business Suite software. The incident exposed personal and financial data belonging to more than 10,000 current and former employees. GlobalLogic is a major digital product engineering company headquartered in Santa Clara, California.
Acquired by Hitachi in 2021, the firm operates in fourteen countries and supports more than four hundred clients across industries through software and product development services.
The Update: GlobalLogic has confirmed that the Clop ransomware group stole highly sensitive data belonging to 10,471 current and former employees by exploiting critical vulnerabilities in Oracle’s E Business Suite. In a notification lodged with the Maine Attorney General, the company stated that the breach occurred between 10 July and 20 August 2025, with the data theft discovered on 9 October.
The compromised information is extensive and includes names, residential addresses, Social Security numbers, passport details, bank account numbers and salary information. A GlobalLogic spokesperson confirmed that Clop is claiming responsibility for the incident. The company stated,
“This incident did not target or impact GlobalLogic’s systems outside our Oracle platform, and, based on industry reports, we are one of many Oracle customers believed to have been impacted.”
The attack is part of a broader mass exploitation campaign by Clop that has targeted unpatched Oracle EBS systems across multiple major organisations.
Why it Matters: This breach at a major technology services provider highlights the severe supply chain risks created by vulnerabilities in widely deployed enterprise software. The incident shows how a single flaw in a commonly used platform such as Oracle EBS can provide threat actors with streamlined access to large volumes of sensitive data held by many organisations.
For GlobalLogic, the exposure of employee financial and passport information creates a significant risk of identity theft and targeted fraud. The event also reinforces Clop’s shift away from data encryption towards pure data theft and extortion, a tactic designed to bypass traditional ransomware defences and increase pressure on victims.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
Cybersecurity vendor SonicWall has confirmed a state-sponsored threat actor breached its systems by exploiting an API call, exposing the firewall configuration files of every customer who used its MySonicWall cloud backup service.
Japanese media giant Nikkei Inc. has disclosed a data breach affecting over 17,000 individuals after attackers infiltrated its Slack workspace using credentials stolen via infostealer malware on an employee’s personal computer, exposing names, emails, and chat histories.
The Australian Signals Directorate (ASD) has issued a critical alert regarding the BADCANDY malware, which is actively exploiting a Cisco vulnerability to compromise hundreds of devices across Australia. The non-persistent web shell allows attackers to reinfect unpatched systems repeatedly.
183 million credentials, including confirmed Gmail login details, has been added to the Have I Been Pwned database. The data, sourced from infostealer malware logs, highlights the persistent threat of credential-stealing software and the critical need for multi-factor authentication and passkeys.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
