The AI race has left the lab. Washington can stop a chip at customs and weights at a server, but not a rival learning from a conversation, as Anthropic's Alibaba claim shows. The contest now runs through memory, power and the question of which models stay walled and which spill into the open.
ASD is preparing to retire the Essential Eight within two years, replacing it with a broader Essentials series for enterprise IT, cloud and operational technology. The shift marks a move from checklist maturity to defensible cyber architectures built for modern attack conditions in Australia today.
Tata Electronics’ confirmed cyber incident underscores a sharper risk for global manufacturers: stolen supplier specifications and production data can expose valuable intellectual property, test customer trust and challenge India’s push to become a trusted alternative to China.
A critical zero-day attack is actively targeting WatchGuard Firebox firewalls, exposing thousands of organisations worldwide. Australian cyber authorities have issued an urgent alert, warning the flaw enables remote takeover of network devices, with more than 115,000 systems still exposed online.
As we close out 2025, this marks our final cyber editorial for the year. It has been an absolute pleasure bringing you consistent updates and objective perspectives on cyber threats, risks, emerging technologies and artificial intelligence. We look forward to continuing the conversation in the new year as we track innovation and work toward a safer digital world. Thank you for reading, supporting and staying vigilant with us.
The Australian Cyber Security Centre (ACSC) has issued a critical alert for a zero-day vulnerability in WatchGuard Firebox firewalls that is under active exploitation by threat actors. WatchGuard, an American cybersecurity company, provides network security appliances to over 250,000 businesses worldwide. Their Firebox products are designed to protect networks from external threats by controlling all inbound and outbound traffic.
Update: A critical zero-day vulnerability, identified as CVE-2025-14733, has been discovered in WatchGuard Firebox firewalls and is being actively exploited in the wild. The Australian Cyber Security Centre (ACSC) issued a critical alert on December 22, 2025, urging all Australian organisations to take immediate action.
The vulnerability is an out-of-bounds write issue in the Fireware operating system's IKE daemon, which can be triggered by a remote, unauthenticated attacker to achieve arbitrary code execution. The flaw affects devices running Fireware OS versions 11.x, 12.x, and 2025.1. According to security researchers at Shadowserver, over 115,000 devices remain unpatched and exposed online globally.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has also added the vulnerability to its Known Exploited Vulnerabilities catalog, mandating federal agencies to patch by December 26. WatchGuard has released security updates and provided indicators of compromise to help organisations identify and remediate affected devices. The vendor has confirmed that the flaw is being targeted as part of a broader campaign against edge networking equipment from multiple vendors.
Why it Matters: The active exploitation of a critical, unauthenticated remote code execution vulnerability in a widely used security appliance like the WatchGuard Firebox represents a significant threat to Australian organisations. These firewalls are the first line of defence for many businesses, including those in critical infrastructure sectors. A compromise could allow attackers to gain a foothold within a network, bypass security controls, exfiltrate sensitive data, or deploy ransomware.
The fact that this is a zero-day vulnerability means that attackers were able to exploit it before a patch was available, increasing the risk for organisations. The ACSC's urgent alert underscores the seriousness of the threat and the need for immediate action. This incident also highlights the ongoing trend of attackers targeting edge devices and the importance of robust vulnerability management programs.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
Tata Electronics’ confirmed cyber incident underscores a sharper risk for global manufacturers: stolen supplier specifications and production data can expose valuable intellectual property, test customer trust and challenge India’s push to become a trusted alternative to China.
Five Eyes cyber agencies have warned leaders to act now as AI changes cyber risk, while Mackay Sugar’s ransomware disruption shows why Australian operators cannot treat resilience as a back-office issue.
AI agents are no longer side experiments. They are becoming live attack surface, carrying access to data, code and identity. For Australian businesses, the message is clear: adoption must be matched with control.
Tenet Security says a fake Sentry error can push AI coding agents into running attacker controlled code, putting developer trust under fresh scrutiny.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
