by CPI Staff | Apr 21, 2026 | AI, Blog, Cybersecurity
For many organisations, AI risk has been treated as a future governance issue. The Australian Cyber Security Centre has just made that position harder to defend. In its 9 April 2026 guidance, Frontier models and their impact on cyber security, ACSC draws a direct line...
by CPI Staff | Apr 21, 2026 | Blog, Cybersecurity, Essential 8, Windows Server
Patch deployment failures are not supposed to become operational incidents. But that is exactly what many IT teams were forced to confront after Microsoft’s April 2026 Windows Server security updates triggered installation failures on some Windows Server 2025...
by CPI Staff | Apr 15, 2026 | AI for Business & AI Strategy, AI Governance & Risk Management, Blog, Cybersecurity
On April 7, 2026, Anthropic announced Project Glasswing — a cybersecurity initiative that brings together AWS, Apple, Broadcom, Cisco, CrowdStrike, Google, JPMorganChase, the Linux Foundation, Microsoft, NVIDIA, and Palo Alto Networks. Their shared mission: use...
by CPI Staff | Apr 12, 2026 | AI Governance & Risk Management, Blog, Cybersecurity, Essential 8, Software Supply Chain Security
When a North Korean state actor compromised the Axios npm package on March 31, 2026, the blast radius did not stop at developer laptops. It reached OpenAI’s macOS code-signing pipeline — the system that certifies ChatGPT Desktop, Codex, Codex CLI, and Atlas as...
by CPI Staff | Apr 9, 2026 | AI, Blog, Cybersecurity, Entra ID, Microsoft 365 Security
Multi-factor authentication has been the security baseline for years. Most Australian organisations treat it as the final checkpoint — if MFA is in place, accounts are protected. That assumption just got a serious challenge. Microsoft Defender Security Research has...
by CPI Staff | Apr 2, 2026 | Application Development, Blog, Cybersecurity, Essential 8
Most organisations still treat dependency management as a developer hygiene issue. The Axios npm compromise shows that assumption is now dangerous. When two malicious Axios versions were published on March 31, 2026, the problem was not limited to a bad package update....
