RP Logo

The Latest Red Piranha News

Greetings everyone!

March had us on our toes on both the product and event front. Our product and development team were busy working on the latest update of Crystal Eye OS, 5.5, which has completed Beta testing and is ready for its release in mid-April. Regarding the 5.0 updates, we also released a few updates designed to make your security platform faster, more reliable, and easier to manage. On the event front, we participated in the Cyber Connect by CyberWest Hub, Avalon Airshow 2025, Startup Mahakumbh and more.

We have planned our regional events in Melbourne, Sydney and Perth for our partners in May, so don’t forget to save the dates and book your spot.

Scroll down to read the latest news and updates at Red Piranha!

Crystal Eye Platform Updates

Crystal Eye OS 5.5 is Almost Here

IMPORTANT NOTICE

The upcoming release of Crystal Eye OS 5.5 signals the looming retirement of Crystal Eye OS 4.5. If you are still using Crystal Eye OS 4.5 you can perform a field upgrade for free to Crystal Eye OS 5.0 right now. If you need any assistance with performing a field upgrade, please reach out to support@redpiranha.net to get your upgrade information pack and make sure your Crystal Eye Appliance is ready.

Final Testing Underway for the next stage of Crystal Eye OS.
We’re excited to announce that Crystal Eye OS 5.5 has entered its final development phase. Over the coming weeks, the update will undergo extensive internal testing, including a final penetration test by our Security Team. This final step ensures that 5.5 delivers the highest standards of stability, performance, and security.

This release brings significant advancements across networking, security integration, AI-powered features, and Orchestrate interface enhancements, all designed to improve efficiency, visibility, and control across your entire environment.

What’s New in Crystal Eye OS 5.5?

Crystal Eye 5.5 introduces major improvements to networking capabilities, including better support for complex environments with enhanced Link Aggregation, High Availability, and simplified Network Port Mapping. These changes make it easier to deploy and manage network configurations at scale.

Integration with Microsoft cloud services has been expanded. Administrators can now manage Microsoft 365 policies directly from the Crystal Eye interface and leverage cloud alarms within CESOC, gaining visibility into Microsoft cloud telemetry alongside existing threat data.

Remote access is now faster and more secure with WireGuard VPN supporting Single Sign-On via direct ENTRA ID integration. This enables secure user authentication and real-time monitoring for remote endpoints.

We’ve also introduced SDWAN Monitoring Support, allowing automatic detection and alerting of link outages. This lays the foundation for automated route repair and improved uptime for secure connections.

Crystal Eye 5.5 includes a built-in AI-powered support agent, offering real-time configuration assistance and best practice guidance directly within the OS, with no external tools required.

The Secure Web Gateway (SWG) continues to evolve, with backend engine upgrades and improvements to application filter policy management. Threat detection powered by AI has also been enhanced, particularly in detecting lateral movement across protected environments.

Orchestrate Platform Enhancements

Red Piranha’s Orchestrate will also get significant usability upgrades over the coming weeks:

  • Remote Support of Crystal Eye Appliances can soon be enabled directly from the Orchestrate.
  • Monitoring for Crystal Eye system resources like CPU, RAM, and storage utilisation will also feature in upcoming releases this month.
  • Self-service features have been expanded, including product ordering and subscription renewals from within Orchestrate.
  • The Red Piranha Training module has been refined with better export functionality, sorting of courses and performance improvements.
  • Container Host Scanning reports and updated IDPS escalation workflows with client confirmation emails are now included.

We have also enhanced our ingestion of threat feeds from the CTA (Cyber Threat Alliance) to further enrich our own Cyber Threat Intelligence that is fed to all Crystal Eye Appliances to automatically keep one step ahead of known threat actors.

We’ll be sharing more detailed updates soon as we move toward the official launch. As always, thank you for being part of the Crystal Eye community.

Service Spotlight: Crystal Eye 360 (CE360)

News3

Cyber threats aren’t slowing down - they are evolving daily, becoming more complex and sophisticated. Organisations need an all-in-one solution that ensures continuous protection with 24/7 monitoring, expert threat intelligence and automated capabilities.

Red Piranha's Crystal Eye 360 (CE360) is a comprehensive cybersecurity solution designed for organisations seeking enterprise-grade security with minimal complexity. Powered by our Australian Sovereign Security Operations Centre (SOC), CE 360 delivers world-class Threat Detection, Investigation, and Response (TDIR) and Network Detection and Response (NDR).

CE360 Bundle Inclusions:

Virtual Chief Information Security Officer (eCISO™) – 3 Years

Gain expert security leadership without the cost of a full-time hire. Our eCISO™ service provides -

  • Comprehensive risk assessments and compliance strategy alignment.
  • Guidance on cyber insurance requirements to ensure coverage eligibility.
  • Alignment with industry-leading frameworks like Essential 8, ISO/IEC27001, and NIST.
  • Strategic cybersecurity planning to stay ahead of evolving threats.
  • Compliance support for government security mandates (SOCI Act and DISP).
  • Security policy templates, annual security reviews, and staff awareness training.
  • Board-level and Annual General Meeting reporting.
  • Reduce the burden on internal teams while ensuring best-practice cybersecurity governance.
  • Monthly Cadence meetings.

Crystal Eye Security Device – 3 Years

A next-generation security appliance that integrates -

  • Advanced Threat Prevention: Firewall, Intrusion Prevention System (IPS), Secure Web Gateway.
  • Deep Packet Inspection (DPI): Identifies and mitigates complex attack vectors.
  • Zero-Trust Architecture: Enforces least-privilege access controls.
  • Seamless Integration: Works with your existing network for frictionless security.

24/7 Security Monitoring and Threat Detection

Backed by our Australian-based SOC, CE360 delivers -

  • Real-Time Threat Detection: AI-driven analytics and Human-Machine Learning correlation.
  • Proactive Incident Response: Reduces attack dwell time and mitigates cyber threats.
  • Expert Security Analysts: Continuous monitoring by certified professionals.
  • Regulatory Compliance Support: Meets Australian cybersecurity standards with ease.

Dark Web Monitoring – 3 Years

We continuously scan the dark web for stolen business credentials and sensitive data, alerting you to breaches before they can be exploited.

Network Detection & Response (NDR)

Leveraging advanced behavioural analytics, NDR -

  • Detects sophisticated cyber threats, including ransomware and insider threats.
  • Provides Proactive Threat Hunting to stop attacks before they escalate.
  • Enforces East-West Traffic Monitoring for deeper network visibility.
  • Integrates with Vulnerability Management to remediate security gaps.

Why Choose Crystal Eye CE360?

  • Comprehensive Cybersecurity in One Solution: No need for multiple vendors or complex integrations.
  • 24/7 Threat Intelligence and Response: Our Australian SOC proactively defends your business.
  • Automated Security and Incident Handling: AI-powered threat detection and remediation.
  • Simplified Compliance and Cyber Insurance Readiness: Meet Essential Eight, ISO27001, and insurance requirements.
  • Enterprise-Grade Security at an SMB-Friendly Cost: Predictable pricing with no hidden fees.
Contact us today for a consultation or demo

Suspected SAIGA Threat Actors Exploit Australian Legal Sector with EDR Bypass

News3

Red Piranha uncovers suspected SAIGA threat actors targeting the Australian legal sector with EDR bypass.

Our SecOps team has identified a highly advanced phishing-as-a-service (PaaS) campaign linked to the notorious SAIGA Group, targeting Microsoft Office 365 in the Australian legal sector.

Red Piranha’s Key Findings:

  • 123 phishing domains deployed in a mass credential-stealing operation.
  • 70 Telegram bots automating real-time theft & exploitation of stolen credentials.
  • Attackers use Adversary-in-the-Middle (AiTM) techniques to bypass MFA undetected.

SAIGA’s phishing campaigns are among the most expensive on the dark web, proving threat actors are going all-in on high-value targets.

Post publishing this blog, our team further uncovered that many of the domains no longer resolve to any IPs. The ones that don't appear to have any connection to the backend infrastructure (/api/config returns an error message similar to "error: site not found"). Their API server is also down, which is likely causing the error. Gitea accounts/repos have been deleted. The Telegram channel has been renamed and set to private. The TikTok account has been deleted as well. Seems like they read our blog!
Read about our findings here

Cactus Ransomware: All You Need to Know

News3

Cactus Ransomware is a sophisticated double-extortion threat hitting networks since 2023. With phishing, lateral movement, and custom C2 implants, it’s a complete kill-chain attacker.

Red Piranha’s Crystal Eye Threat Detection, Investigation, and Response (TDIR) solution is uniquely equipped to detect and prevent Cactus ransomware’s Tactics, Techniques, and Procedures (TTPs) through a combination of advanced monitoring, integrated threat intelligence, and proactive defence strategies.
Get more information about the group here

Red Piranha Events

Here’s a sneak peek into the events we attended last month:

Cyber Connect

News3

Cyber West Hub has launched its monthly event series, Cyber Connect, fostering a collaborative space for cybersecurity professionals to connect, build trust, and deepen their expertise. By tackling critical challenges and sharing valuable insights, the series strengthens cybersecurity across industries.

Last week, our BDM Dayna Bennett attended the session, where Curtin University's Andrew Bell and Adil Khokhar presented on Digital Innovation in Mining and Open Automation.

It was great connecting with friends in the community. We're looking forward to seeing Cyber Connect grow and create new opportunities in WA for collaboration within the cybersecurity community.

Avalon Air Show 2025

News3

Our team, Adam, George, Sameer and Amr attended the Avalon Australian International Airshow where they met our friends in the industry and some key industry leaders including Lucas Friend, John Godwin, Alex McClung, Steve McEwan, and Stephen Baker.

Our team showcased our best-in-class Crystal Eye TDIR and how it's securing Australia’s Defence supply chain and strengthening sovereign capability.

WAITTA Reimagined

News3

Our BDM Dayna Bennett attended WAITTA Reimagined.

Congratulations to the board, leadership team, volunteers and ambassadors and with thanks to the incredible sponsors, a night to reflect on the fantastic work achieved so far and look to the future in celebrating 34 years of WAITTA – Innovation, Technology and Talent across Western Australia.

Startup Mahakumbh

News3

Red Piranha participated in ‘Startup Mahakumbh, India’s premier startup event, bringing together the brightest minds in innovation and entrepreneurship. As a global leader in cybersecurity and threat intelligence, Red Piranha is at the forefront of securing businesses, governments, and critical industries. Our Crystal Eye TDIR platform delivers cutting-edge cybersecurity solutions, integrating threat detection, incident response, and compliance automation to fortify digital infrastructures against evolving cyber threats.

This landmark event was spearheaded by India’s foremost Startup Ecosystem Leaders and led by the Federation of Indian Chambers of Commerce & Industry (FICCI), in collaboration with Assocham, IVCA, Nasscom, Bootstrap Foundation, and other key industry stakeholders, with support from the National Startup Advisory Council (NSAC), Department for Promotion of Industry and Internal Trade, and Startup India.

With a curated program covering AI, DeepTech & Cybersecurity, HealthTech, AgriTech, Energy & Climate Tech, Defence & Space Tech, and more, Startup Mahakumbh is shaping a self-reliant, innovative, and Viksit Bharat by 2047.

Sector Briefing: Security & Resilience

News3

Red Piranha CEO Adam Bennett attended today’s Sector Briefing: Security & Resilience in Perth, thanks to the team at Cyber West Hub where he engaged with key stakeholders from industry and government. Seen here with Cr Tarun Dewan from the City of Cockburn.

Thank you to Business News for organising a timely and insightful event focused on the growing imperative for digital security to safeguard infrastructure and protect critical cyber systems. Western Australia’s response to these challenges will play a pivotal role in shaping its long-term economic resilience.

Upcoming Partner Events

We are organising regional Partner Events for our partners and customers to help them strengthen their cybersecurity posture with Red Piranha and showcase the new features and upgrades in Crystal Eye 5.5.

Partner Event – Melbourne

News3

Secure your spot here

Partner Event – Sydney

News3

Signup today

Partner Event – Perth

News3

Register here

Subscribe
Now

Request a
Demo

Leave a
Review
News3

News3

News3

Questions?

Get in touch. If you have any questions, comments or feedback regarding our ongoing programs, products or services, please submit them to support@redpiranha.net or head to our forum at https://forum.redpiranha.net/.

**Terms and conditions apply!
Contact your business development manager to receive a copy of the terms and conditions. Prices are correct as of 13/01/2021, subject to change.