Australia warns of active Russian-linked hackers targeting critical industries

Australia warns of active Russian-linked hackers targeting critical industries

Australia's signals intelligence agency has issued a fresh warning that Russian-linked hackers are actively targeting critical industries across the country. The alert covers sectors including defence, communications, energy and financial services, with state and local government agencies also identified as vulnerable. The warning says the attackers are exploiting poorly secured network devices and outdated software to gain access to information.

Orovi_landscape

Sponsored

The Australian Signals Directorate said the hackers are using simple methods such as targeting poorly protected routers and guessing default passwords. It said the activity is linked to actors operating on behalf of Russia's Federal Security Service, and that the campaign is not limited to Australia. The warning was issued jointly with nearly two dozen partner agencies, including the United States National Security Agency and counterparts in the United Kingdom, New Zealand, Canada, Finland, France and Denmark.

Officials urged government and industry bodies to take immediate steps to reduce exposure, including updating software, securing network devices and improving password practices. The agency said the hackers are seeking login details and other information through devices that have predictable passwords or outdated protections. The warning also named several groups it said are frequently responsible for this kind of activity, including Berserk Bear, Energetic Bear, Crouching Yeti, Dragonfly, Ghost Blizzard and Static Tundra.

The alert matters because it points to a continuing risk for critical infrastructure at a time when cyber threats are becoming faster and more sophisticated. The joint warning said leaders must act swiftly, and linked that urgency to the growing use of artificial intelligence in cyber operations. For Australia, the focus on essential services such as energy, communications and finance raises the stakes for both public agencies and private operators.

Santuzza_land

Sponsored

The warning also reflects a broader pattern of concern among allied cyber agencies about state-backed intrusion attempts against government and industry networks. The ASD said similar notices have been issued over a number of years, suggesting the threat is persistent rather than isolated. A former head of the Australian Cyber Security Centre said comparable alerts have been repeated for years, underlining the long-running nature of the problem.

What remains unclear is how many Australian systems may already have been compromised and whether the activity has caused any confirmed disruption. The warning did not provide a public assessment of the scale of any breach, but it did single out routers, default passwords and outdated software as immediate points of weakness. The next focus is likely to be whether organisations act quickly on the guidance and whether further alerts follow from allied agencies.

360LiveNews 360LiveNews | 14 Jul 2026 08:00 LONDON
← Back to Homepage