GRC stories

AI-era data security needs more than DSPM visibility, as firms must track how sensitive information moves and enforce controls in real time.

Sydney-founded Haast secures $17.2 million as investors back its push to embed automated compliance checks into enterprise workflows.

Custodia says financial firms must widen record-keeping to cover collaboration tools, messaging apps and AI-generated content as regulators step up scrutiny.

Secureframe adds user access reviews to Comply platform to help compliance teams replace spreadsheets and email with a single audit-ready workflow.

Abacus secures CREST accreditation for penetration testing, bolstering its pitch to regulated sectors as demand rises for verified cyber security assurance.

Identity failures are now the main way cyber attackers breach firms, with experts warning that non-human credentials are widening the risk.

Barry Plant and other firms back My Databoss as Australia's Tranche 2 AML reforms drive demand for audit-ready compliance tools.

Anthropic’s Claude Code is under scrutiny after researchers found deny rules can weaken in long workflows, raising fresh concerns for AI-driven development.

VITG broadens ANZ cyber offering with Security Centric deal and names founder Sash Vasilevski Chief Security Officer in combined group.

Avocado urges Australian firms to tighten repository security as the ACSC reissues a high alert on active supply chain attacks and secrets sprawl.

Australia's Big Four loan scandal highlights how process intelligence can expose ghost paths, bypassed checks and hidden fraud networks.

Genetec says enterprise physical security needs tighter oversight as hybrid cloud deployments grow, with resilience and compliance now driving buying decisions.

Kyndryl unveils a governance toolkit to help firms supervise autonomous AI agents across IT operations, as enterprises move beyond pilot projects.

F5 and Forcepoint have teamed up to link data discovery with runtime controls, aiming to curb AI risks as enterprises move systems into production.

Foxit's latest PDF Editor update adds Action Inspector to uncover hidden scripts and redaction-bypassing behaviour in business documents.

AEM Networks widens its test kit as AI-driven bandwidth, latency and audit pressures push the Singapore unit beyond cable certification into fibre and RF.

PEXA launches pay-per-use compliance tool for property firms as Australia's AML and counter-terrorism rules approach in 2026.

Experts warn firms must improve visibility and backup resilience as automated ransomware campaigns and hidden SaaS and AI assets widen exposure.

Australian and New Zealand businesses are being urged to harden cloud defences as experts warn of identity flaws, misconfigurations and AI-fuelled attacks.

Liquibase rolls out AI-backed database governance and deployment connectors for ServiceNow, GitHub, Harness and Terraform to improve auditability.