Cyber News Centre’s new podcast reviews the top AI startup stories from May 2025. In this 5-minute episode, Kayllah and David break down breakthroughs from Harrison.ai, Arrive AI, Cortical Labs, and Unitree Robotics—spanning healthcare, robotics, and more.
On May 30, 2025, Australia became the first nation to criminalize secret ransomware payments. Under the new Cyber Security Act, large organizations must report such incidents within 72 hours—marking a major step in the country’s quest to become a global cybersecurity leader by 2030.
On May 30, 2025, Australia became the first nation to criminalize secret ransomware payments. Under the new Cyber Security Act, large organizations must report such incidents within 72 hours—marking a major step in the country’s quest to become a global cybersecurity leader by 2030.
The digital shadows have grown longer across Australia's corporate landscape, and now the government is forcing businesses to step into the light. As of May 30, 2025, Australia became the first nation to criminalize ransomware payment secrecy, implementing mandatory reporting requirements that represent the culmination of a year-long governmental crusade to reshape the nation's cyber destiny.
Enacted last month on May 30, 2025, the Cyber Security Act 2024 crowns an ambitious strategy ignited by former Minister for Cyber Security Clare O’Neil’s audacious blueprint to establish Australia as a global cybersecurity leader by 2030. Far from a mere reporting obligation, this legislation transforms transparency into a formidable weapon in a relentless digital war that has left countless corporate entities battered.
Tony Burke, Australia’s Minister for Home Affairs and Cyber Security, has been a vocal advocate for a collaborative and proactive approach to cyber security, as demonstrated by his remarks in late 2024. In his official media release of November 25, 2024, he declared,
“The Australian Government is delivering on its commitment to secure Australia’s cyber environment and protect our critical infrastructure,” and highlighted that “close co-operation between government and industry is one of our best defences against malicious cyber activity.”
Under the Cyber Security Act 2024, any organization with annual turnover exceeding AUS $3 million must now confess their digital sins to the Australian Signals Directorate within 72 hours of paying cybercriminals. The legislation casts a wide net, ensnaring not just traditional businesses but critical infrastructure operators who find themselves caught between operational survival and regulatory compliance.
In this video, Lieutenant General Michelle McGuinness CSC, and Hamish Hansford, Deputy Secretary of Cyber and Infrastructure Security Group, discuss the four key measures of Australia’s first Cyber Security Act.
In a recent post on LinkedIn, Lieutenant General Michelle McGuinness, the National Cyber Security Coordinator, frames this transformation in stark terms:
The stakes are deliberately punitive. Companies that choose silence over transparency face fines of $19,800 per violation—a calculated pressure point designed to overcome the corporate instinct for damage control.
"While some businesses might be tempted to stay quiet to avoid reputational damage, the risk of fines and the government's pledge to educate will discourage that," warns David Tuffley, a senior lecturer in applied ethics and cybersecurity at Griffith University.
Industry practitioners have embraced this regulatory revolution with cautious optimism. Mark Mantakoul from ZIRILIO reaffirmed:
"This legislation is a turning point for cyber law in Australia. It strengthens transparency, encourages collaboration, and sets the stage for a more coordinated national response to ransomware threats."
Yet this legislative hammer falls on an already fractured foundation. Recent data reveals that only 4% of Australian organizations have achieved mature cybersecurity readiness, according to Cisco's 2025 Cybersecurity Readiness Index. More alarmingly, 86% of organizations faced AI-related security incidents in the past year, while half suffered direct cyberattacks—statistics that expose the chasm between governmental ambition and corporate reality.
The government's "education-first approach" for the initial six months masks a darker truth: Australia's cyber defenses are crumbling under sustained assault. The SoSafe report's revelation that 96% of Australian organizations were targeted through personal devices in the past 12 months exposes the futility of traditional perimeter security in an era of hybrid warfare.
The $3 million threshold, while exempting 90% of Australian businesses, creates a troubling two-tier system where smaller enterprises remain invisible to threat intelligence gathering. This regulatory blind spot could prove catastrophic as cybercriminals increasingly target supply chains and smaller entities as stepping stones to larger prey.
The legislation's requirement for detailed incident reporting—including payment amounts, communication records, and attack vectors—transforms every ransomware victim into an unwilling intelligence asset. While authorities frame this as threat landscape mapping, it also creates a comprehensive database of organizational vulnerabilities that could itself become a target.
As Australia pioneers this regulatory frontier, the question remains whether mandatory transparency will deter cybercriminals or simply force them to evolve their tactics. In a digital ecosystem where silence has traditionally been golden, the government is betting that forced confession will prove more valuable than corporate discretion.
The experiment begins now, with every compromised organization serving as both victim and data point in Australia's high-stakes gamble to achieve cyber supremacy by 2030.
Jensen Huang spearheaded Trump’s assertive AI strategy, driving Nvidia’s profits up 69% despite intense US-China tensions. Together with Elon Musk, Huang orchestrated landmark Gulf deals, embedding American tech globally, boosting Silicon Valley dominance, and sidelining China's AI ambitions.
AI is reshaping Western defense, but with progress comes risk. Australia stands at a crossroads: lead in securing AI-driven military tech or risk importing vulnerabilities. As global powers weaponize algorithms, oversight, cooperation, and resilience are now mission-critical.
AI is fueling a new wave of cyber threats—but it's also powering the tools to stop them. From privacy concerns and energy strain to predictive security and autonomous defence, this article explores how businesses are adapting to the dual impact of AI in 2025.
Trump’s Gulf tour seals $3.2 trillion in AI, tech, and defense deals with Saudi Arabia, Qatar, and UAE—featuring Starlink, Nvidia chips, quantum tech, and robotics—redefining the region’s global role.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
