Tehran-linked hackers are turning a distant war into a live resilience test for Australia, probing Five Eyes networks as local banks quietly move to high alert while hybrid warfare becomes a “when, not if” cyber disruption scenario.
Five Eyes nations, led by Australia's ASD, have issued an urgent warning for a critical zero-day (CVE-2026-20127) in Cisco's SD-WAN products. The flaw, actively exploited since 2023 by a sophisticated actor, allows for complete network takeover and impacts critical infrastructure globally.
This week’s tech earnings put Nvidia back under the spotlight, as blockbuster AI-driven results clashed with a skittish market that still sold the stock off—capturing the tension between hard data on acceleration and deep-seated fears of an AI overreach.
A significant cyberattack on real estate finance vendor SitusAMC has compromised corporate and customer data, impacting major US banks including JPMorgan Chase, Citi, and Morgan Stanley. The FBI is now investigating the breach, which affects the sensitive data of residential mortgage holders.
Cyber News Centre's cyber update for 24th November 2025: SitusAMC, a critical technology vendor for the real estate finance industry, has confirmed a significant data breach that has prompted an FBI investigation and sent major US banks scrambling to assess the impact on their customers.
SitusAMC is a leading provider of technology and services for the commercial and residential real estate finance industry. The company is trusted by hundreds of lenders and investors, including top-tier banks, to support the entire lifecycle of their real estate activities, from origination and valuation to servicing and asset management.
Update: SitusAMC confirmed on November 22 that it detected a cyberattack on November 12, which resulted in the compromise of corporate and client data. The company stated that accounting records, legal agreements, and data related to its clients' customers, specifically residential loan mortgages, were impacted. While the full extent is still under investigation, the breach did not involve ransomware. In a statement, SitusAMC CEO Michael Franco confirmed the incident is contained and that the company notified federal law enforcement. The FBI is now actively investigating the matter as major financial institutions, including JPMorgan Chase, Citi, and Morgan Stanley, work to determine the scope of exposure for their customers. The breach highlights the significant downstream risk posed by third-party vendors that are deeply integrated into the financial system, processing vast amounts of sensitive personal and financial information for the nation's largest banks.
Why it Matters: This incident is a stark reminder of the systemic risk embedded in the global financial supply chain. A single breach at a critical, but lesser-known, vendor can have cascading consequences for the world's largest banks and their millions of customers. The exposure of residential mortgage data creates a significant threat of targeted fraud, identity theft, and sophisticated phishing campaigns against homeowners. For Australia, whose financial and real estate markets are deeply intertwined with the US system, this event serves as a critical alert. It demonstrates how a compromise in a US-based vendor can create ripple effects, potentially impacting Australian homeowners and financial institutions.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
Tehran-linked hackers are turning a distant war into a live resilience test for Australia, probing Five Eyes networks as local banks quietly move to high alert while hybrid warfare becomes a “when, not if” cyber disruption scenario.
Five Eyes nations, led by Australia's ASD, have issued an urgent warning for a critical zero-day (CVE-2026-20127) in Cisco's SD-WAN products. The flaw, actively exploited since 2023 by a sophisticated actor, allows for complete network takeover and impacts critical infrastructure globally.
Canadian transcription firm VIQ Solutions has admitted to a significant data breach after subcontracting work to an Indian firm, e24 Technologies, exposing highly sensitive Australian federal and state court files. The incident, raises major national security concerns
Sydney-based fintech youX has confirmed a massive data breach exposing the personal and financial details of 444,538 Australian borrowers. An unsecured database left 141GB of data, including loan applications, driver's licences, and residential addresses, accessible for at least 10 months.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
