Recent Cyber Incidents in Australia

The vulnerability of the sector is highlighted by several recent events across the country. In early 2025, hackers claimed to have stolen personal information from Nature’s Organics, an Australian organic goods producer. Other notable targets included Yakult Australia, where sensitive employee documents were published on the dark web, and Watkins Steel in Queensland, which fell victim to a ransomware operation. These incidents demonstrate that no sub-sector, from dairy supplies to luxury caravan manufacturing, is immune to digital threats.

Primary Cyber Risk Exposures

According to industry reports, there are several key areas where Australian manufacturers face significant exposure:

1. Cyber Crime and Fraud

Criminals frequently target the electronic funds transfer processes that manufacturers use to pay suppliers and employees. Social Engineering and Push Payment Loss are common methods used to divert funds to fraudulent accounts. Reports indicate that the average funds transfer fraud (FTF) amount in recent analysis was $135,000, with a staggering 78% of incidents resulting in no recovered funds.

2. Ransomware and Extortion

Ransomware remains a critical threat, with attackers often encrypting and exfiltrating sensitive data, such as intellectual property and design plans. Under the Cyber Security Act 2024, Australian businesses with an annual turnover exceeding $3 million will be legally required to report ransomware payments starting from 30 May 2025. Additionally, making payments to sanctioned entities can lead to severe criminal penalties under Australian law.

3. Third-Party IT Vulnerabilities

Manufacturers increasingly rely on third-party platforms for supply chain management and production monitoring. The Australian Privacy Commissioner has noted a rise in data breaches originating from these third-party suppliers. Even if a breach occurs on a provider’s platform, the manufacturer may still hold the legal obligation to notify affected individuals if they are the party “closest” to the end client.

4. The Insider Threat

Not all threats are external. Insider threats from current or former employees, whether malicious or negligent, are a growing concern. Data from the Office of the Australian Information Commissioner (OAIC) shows that while insider incidents may be fewer in number than external attacks, they are often more costly because an “informed” insider can hide their activities for long periods.

The Financial and Operational Impact

The correlation between steady production and revenue makes manufacturers attractive targets. A Distributed Denial of Service (DDoS) attack, for example, can overwhelm servers and render ‘Just In Time’ inventory systems inaccessible, halting production for hours or days.

Beyond immediate profit loss, manufacturers face:

• Reputational Damage: Negative press following an attack can alarm customers and result in long-term loss of business.
• System Failure: Unplanned outages, such as the July 2024 Xero/AWS outage, can disrupt payroll and end-of-month accounting for Australian businesses.
• Regulatory Fines: Under the Privacy Act, fines for serious privacy breaches can reach up to $50 million or 30% of a company’s adjusted turnover.

Director Responsibilities and Resilience

In Australia, company directors have a duty to ensure their organisation’s risk management framework adequately addresses cyber security risk. ASIC has explicitly stated that failing to implement controls to protect key assets may constitute a failure to meet regulatory obligations.

As the manufacturing landscape becomes more interconnected, understanding these exposures is the first step toward building a more resilient enterprise.

For your complimentary, no-obligation Cyber Risk Assessment, please contact KBI.