<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>CyberCraft Insights</title><description>Expert analysis on AI adoption, cybersecurity, and risk management for Australian and New Zealand businesses.</description><link>https://www.cybercraft.net/</link><item><title>Your Accounting Software Is Already Using AI — New Guidance Explains What That Means for Your Data</title><link>https://www.cybercraft.net/blog/ai-embedded-accounting-software-tpb-guidance/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-embedded-accounting-software-tpb-guidance/</guid><description>Xero, MYOB and Microsoft 365 now process client data through embedded AI by default. New Tax Practitioners Board guidance flags the compliance gap — and it affects every business that uses them.</description><pubDate>Mon, 06 Jul 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Governance</category><category>Privacy</category><category>Compliance</category><category>Professional Services</category></item><item><title>Australia Is the World&apos;s Most Cautious AI Adopter — and That&apos;s Costing More Than It Saves</title><link>https://www.cybercraft.net/blog/ai-trust-barrier-australian-business-adoption/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-trust-barrier-australian-business-adoption/</guid><description>Only 30% of Australians think AI&apos;s benefits outweigh the risks — the lowest of any country. The fix for that caution is also what unlocks the returns.</description><pubDate>Mon, 29 Jun 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Adoption</category><category>AI Governance</category><category>Responsible AI</category><category>SME</category></item><item><title>Cyber Insurance Is a Buyer&apos;s Market Again — But Only If You Can Prove the Basics</title><link>https://www.cybercraft.net/blog/cyber-insurance-controls-sme-renewal/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/cyber-insurance-controls-sme-renewal/</guid><description>Australian SMEs lose an average of $56,600 per cybercrime report. Cover is cheaper than it was, but insurers now want evidence of controls before they sign.</description><pubDate>Mon, 22 Jun 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Cyber Insurance</category><category>Risk Management</category><category>Essential Eight</category></item><item><title>AI Is Making Your Decisions — From December You Have to Say So</title><link>https://www.cybercraft.net/blog/ai-automated-decision-transparency-privacy-act-2026/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-automated-decision-transparency-privacy-act-2026/</guid><description>From 10 December 2026, businesses using AI in decisions that affect customers must disclose it in their privacy policy. Government data shows most aren&apos;t ready.</description><pubDate>Mon, 15 Jun 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Governance</category><category>Privacy</category><category>Compliance</category><category>Automated Decision-Making</category></item><item><title>The Box in Your Comms Cupboard: Why Your Firewall and VPN Are Now Prime Targets</title><link>https://www.cybercraft.net/blog/edge-devices-firewalls-vpn-sme-target/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/edge-devices-firewalls-vpn-sme-target/</guid><description>Edge devices — firewalls, routers and VPN gateways — are now a primary way attackers get into Australian SMEs. The fix is unglamorous: patch, replace, and turn off what you don&apos;t use.</description><pubDate>Mon, 15 Jun 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Network Security</category><category>Threat Landscape</category><category>Risk Management</category><category>SME</category></item><item><title>Why Most Australian Businesses Aren&apos;t Seeing a Return on AI — Yet</title><link>https://www.cybercraft.net/blog/ai-roi-gap-australian-businesses/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-roi-gap-australian-businesses/</guid><description>PwC found 74% of real financial returns from AI go to just 20% of companies. The dividing line isn&apos;t the technology — it&apos;s whether you redesign how work gets done.</description><pubDate>Tue, 02 Jun 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Adoption</category><category>Productivity</category><category>AI Strategy</category><category>SME</category></item><item><title>Australia&apos;s Privacy Tort Turns One: The Civil Liability Most SMEs Still Don&apos;t See</title><link>https://www.cybercraft.net/blog/privacy-tort-one-year-sme-civil-liability/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/privacy-tort-one-year-sme-civil-liability/</guid><description>Australia&apos;s statutory tort for serious invasions of privacy turns one on 10 June. The first court test confirms it has teeth — and SMEs are exposed.</description><pubDate>Mon, 25 May 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Privacy</category><category>Compliance</category><category>Risk Management</category><category>SME</category></item><item><title>AI-Adopting Firms Are Hiring 36% More: What That Means for Australian SMEs</title><link>https://www.cybercraft.net/blog/ai-adopters-hiring-more-australian-smes/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-adopters-hiring-more-australian-smes/</guid><description>New CSIRO research finds Australian firms that adopted AI posted 36% more jobs than non-adopters. The real divide isn&apos;t humans versus machines.</description><pubDate>Mon, 18 May 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Adoption</category><category>Workforce</category><category>Productivity</category><category>SME</category></item><item><title>Agentic AI Is Already in Your Business — Here&apos;s What That Actually Means</title><link>https://www.cybercraft.net/blog/agentic-ai-australian-business-readiness/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/agentic-ai-australian-business-readiness/</guid><description>69% of Australian organisations already use AI agents. Only 22% have adequate governance. New joint government guidance published this week explains the risks.</description><pubDate>Mon, 04 May 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Governance</category><category>AI Strategy</category><category>Agentic AI</category><category>Risk Management</category></item><item><title>The $97,000 Email: Why Business Email Compromise Keeps Beating Australian SMEs</title><link>https://www.cybercraft.net/blog/business-email-compromise-australian-sme-threat/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/business-email-compromise-australian-sme-threat/</guid><description>BEC fraud now accounts for 15% of all business cybercrime in Australia, with medium businesses losing an average of $97,166 per incident. The defence isn&apos;t a tool — it&apos;s a process change.</description><pubDate>Mon, 27 Apr 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Business Email Compromise</category><category>Fraud Prevention</category><category>Risk Management</category><category>SME</category></item><item><title>Shadow AI Is Already in Your Business — What to Do About It</title><link>https://www.cybercraft.net/blog/shadow-ai-workplace-risk-governance/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/shadow-ai-workplace-risk-governance/</guid><description>49% of employees use unsanctioned AI tools at work. In Australia, 92% of leaders say that introduces risk. Here&apos;s what to do before a shortcut becomes a breach.</description><pubDate>Mon, 20 Apr 2026 00:00:00 GMT</pubDate><category>AI</category><category>Shadow AI</category><category>AI Governance</category><category>Data Privacy</category><category>Risk Management</category></item><item><title>The AI Vulnerability Storm: What It Actually Means for Your Business</title><link>https://www.cybercraft.net/blog/ai-vulnerability-storm-what-it-means-for-your-business/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-vulnerability-storm-what-it-means-for-your-business/</guid><description>Anthropic&apos;s Claude Mythos found thousands of critical vulnerabilities across every major OS and browser. Here&apos;s what Australian business owners need to know — without the hype.</description><pubDate>Wed, 15 Apr 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Security</category><category>Threat Landscape</category><category>Risk Management</category></item><item><title>The OAIC Is Done Warning: What Australia&apos;s First Privacy Compliance Sweep Means for Your Business</title><link>https://www.cybercraft.net/blog/oaic-privacy-enforcement-compliance-sweep/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/oaic-privacy-enforcement-compliance-sweep/</guid><description>Australia&apos;s privacy regulator launched its first-ever compliance sweep in January 2026, reviewing 60 businesses across six sectors. With new powers to issue $66,000 infringement notices without going to court, the enforcement era has arrived.</description><pubDate>Mon, 13 Apr 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Privacy</category><category>Compliance</category><category>OAIC</category><category>Risk Management</category></item><item><title>The AI Skills Gap: Why Two-Thirds of Australian SMBs Use AI but Only 5% Are Getting Full Value</title><link>https://www.cybercraft.net/blog/ai-skills-gap-sme-workforce-australia/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-skills-gap-sme-workforce-australia/</guid><description>Most Australian small businesses are using AI, but a Deloitte study found just 5% are fully equipped to benefit. The culprit isn&apos;t the technology — it&apos;s workforce capability.</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Skills</category><category>Workforce</category><category>Productivity</category><category>SME</category></item><item><title>Australia&apos;s Ransomware Reporting Law Is Now in Enforcement Mode: What Your Business Must Do</title><link>https://www.cybercraft.net/blog/cyber-security-act-ransomware-reporting-obligations/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/cyber-security-act-ransomware-reporting-obligations/</guid><description>Australia&apos;s mandatory ransomware payment reporting law entered active enforcement in January 2026. If your turnover exceeds $3 million, a 72-hour reporting clock is now ticking after any ransom payment.</description><pubDate>Mon, 23 Mar 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Ransomware</category><category>Compliance</category><category>Cyber Security Act</category><category>Mandatory Reporting</category></item><item><title>The AI Adoption Gap: Why Most Australian SMEs Are Missing the Productivity Opportunity</title><link>https://www.cybercraft.net/blog/ai-adoption-gap-australian-smes/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-adoption-gap-australian-smes/</guid><description>Only 37% of Australian SMEs are actively adopting AI, yet businesses that do are seeing up to fourfold productivity gains. Here&apos;s what decision-makers need to know about closing the gap.</description><pubDate>Tue, 10 Mar 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Adoption</category><category>Productivity</category><category>SME</category></item><item><title>Ransomware Is Australia&apos;s Top Cyber Threat — And the Costs Are Climbing Fast</title><link>https://www.cybercraft.net/blog/ransomware-crisis-australian-businesses/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ransomware-crisis-australian-businesses/</guid><description>Ransomware made up 34% of Australia&apos;s most damaging cyber incidents last year, with average payments reaching $1.35 million. Here&apos;s what your board needs to know.</description><pubDate>Thu, 05 Mar 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Ransomware</category><category>Incident Response</category><category>Risk Management</category></item><item><title>Australia&apos;s National AI Plan: What the New Governance Framework Means for Your Business</title><link>https://www.cybercraft.net/blog/australia-national-ai-plan-governance/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/australia-national-ai-plan-governance/</guid><description>Australia launched its National AI Plan in December 2025, introducing new governance frameworks and an AI Safety Institute. Here&apos;s what business leaders need to understand about compliance and opportunity.</description><pubDate>Tue, 24 Feb 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Governance</category><category>Compliance</category><category>Regulation</category></item><item><title>Essential Eight Compliance: Why 78% of Australian Organisations Are Still Falling Short</title><link>https://www.cybercraft.net/blog/essential-eight-maturity-compliance/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/essential-eight-maturity-compliance/</guid><description>Only 22% of assessed entities have reached Maturity Level 2 across all eight strategies. With cyber insurers now demanding E8 compliance, the gap is becoming a business risk.</description><pubDate>Tue, 10 Feb 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Essential Eight</category><category>Compliance</category><category>Cyber Insurance</category></item><item><title>Your Trusted Vendor Could Be Your Biggest Cyber Risk: Supply Chain Security in 2026</title><link>https://www.cybercraft.net/blog/supply-chain-security-vendor-risk/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/supply-chain-security-vendor-risk/</guid><description>State-sponsored actors and criminal groups are increasingly targeting supply chains. With regulators holding companies accountable for vendor security, it&apos;s time to rethink third-party risk.</description><pubDate>Wed, 28 Jan 2026 00:00:00 GMT</pubDate><category>Cyber</category><category>Supply Chain</category><category>Third-Party Risk</category><category>Governance</category></item><item><title>AI-Powered Cyber Threats Are Targeting Australian Businesses — Here&apos;s What You Need to Know</title><link>https://www.cybercraft.net/blog/ai-security-threats-australian-businesses/</link><guid isPermaLink="true">https://www.cybercraft.net/blog/ai-security-threats-australian-businesses/</guid><description>51% of Australian organisations have already encountered AI-powered cyber threats. From deepfake scams to prompt injection attacks, the threat landscape is evolving fast.</description><pubDate>Thu, 15 Jan 2026 00:00:00 GMT</pubDate><category>AI</category><category>AI Security</category><category>Threat Landscape</category><category>Risk Management</category></item></channel></rss>