The Latest Red Piranha News
|
May has been a month of strong recognition for Red Piranha, marked by key achievements that reflect our continued contribution to Australia’s cybersecurity and defence landscape. We are proud to have been recognised at the Australian Cyber Awards 2026, reinforcing the impact of our work in delivering advanced, real-world cybersecurity capabilities.
We are also honoured to be featured in the 10th edition of the Australian Defence Exports Catalogue. As an official member of Team Defence Australia, our inclusion for six consecutive years reflects our ongoing commitment to delivering sovereign, export-ready cybersecurity solutions aligned with Australia’s defence priorities.
These milestones underscore our focus on innovation, operational excellence, and supporting critical sectors with security solutions designed for today’s evolving threat environment.
Read on to explore this month’s highlights and the latest updates from the Red Piranha team. |
Red Piranha Wins Security Operations & Threat Detection Provider of the Year at the Australian Cyber Awards 2026
|
 |
|
Red Piranha wins the Security Operations & Threat Detection Provider of the Year at the Australian Cyber Awards 2026, recognising our leadership in delivering sovereign, intelligence-led cyber defence capabilities.
The Australian Cyber Awards recognise organisations setting the operational standard across the nation's cybersecurity sector. Red Piranha was selected on the strength of its 24×7 Security Operations Centre, the detection depth of the Crystal Eye platform, and its sustained contribution of original threat intelligence to the broader defender community.
We are proud to stand alongside leading Australian organisations contributing to the nation’s cybersecurity and defence capability and remain committed to advancing innovation and resilience across the industry.
|
| Read more on our latest win |
Red Piranha Appoints Palantir Technology Counsel, Reuben Hernandez, to the Board
|
 |
|
As Red Piranha accelerates its global expansion, we’re strengthening our Board with the appointment of Reuben Hernandez as a Non-Executive Director.
Reuben currently serves as Senior Legal Counsel for the Asia-Pacific region at Palantir Technologies, bringing extensive experience across AI, regulation, and high-growth technology environments. Prior to this, he spent four years in Palantir’s London office, supporting the company’s EMEA and global operations through
His expertise and strategic insight will play an important role in guiding Red Piranha through its next phase of global growth.
|
| Read more |
Inside the Sinobi Ransomware Playbook: Risks, Tactics, and Defence Strategies
|
 |
|
Most ransomware stories start with encryption. This one starts with silence. We have been tracking the Sinobi ransomware group, and their approach should concern every organisation. They don’t break systems - they log in quietly, scrape mailboxes, harvest file shares, and exfiltrate data via Tor. In many cases, the breach only becomes visible once the leak site goes live. This is data-broker extortion: reputation damage first, operational disruption second.
If your visibility stops at alerts and signatures, this kind of intrusion will go unnoticed. At Red Piranha, our threat intelligence team mapped the full kill chain and validated how modern defence needs to respond. Unified TDIR visibility across identity, endpoint, network, and cloud surfaces behaviours that would otherwise be dismissed as normal activity.
If your organisation relies on email, cloud identity, or shared data repositories, this isn’t a theoretical risk - it reflects today’s threat model. You need the full TDIR lifecycle operating as a cohesive system.
|
| Read more on our findings |
Crystal Eye Platform Updates - May
|
This release includes several improvements, including AI engine enhancements, the addition of an L2 monitor in HA state, reboot issues fixed due to disk pullout, improvements to web filter and new features added to the SSL VPN App. We have also made several system and database improvements in preparation for Crystal Eye OS 6.0.
If you haven’t upgraded to 5.5 yet, here’s what you’re missing:
- RAID Support
- AI Engine
- Link Aggregation (LACP) support
- Entra ID Management and Policy Configuration
- High Availability
- Secure Web Gateway Support
- UI Enhancements - Reporting
- DAS (Declarative Authorisation Service) for Granular SaaS Policy Enforcement
- Bridge Interface Deployment
- Feature additions to SSL VPN
- A wide range of stability and reliability enhancements across the platform
This release continues to refine those capabilities with improved AI alert ingestion and reporting, new Layer 2 monitoring in High Availability, more resilient disk handling, segregated report structure, stronger web filtering validation, VPN usability enhancements, and guided recommendations in My Cases and a new, upgraded training platform.
Updates are available from now for appliances with Automatic Updates enabled, or via manual upgrade for those who manage updates themselves.
A reminder that Crystal Eye 5.0 is nearing end-of-life, aligned with the upcoming Crystal Eye OS 6.0 release planned for late Q2 2026. Version 6.0 will introduce broader platform evolution, deeper intelligence, and new capabilities designed to further simplify security operations and response. More details will be shared closer to launch.
If you haven’t yet moved to 5.5, we strongly recommend upgrading soon to stay supported and be ready for what’s next.
For support or more information, reach out to support@redpiranha.net or visit our Forum at forum.redpiranha.net. |
ShinyHunters: All You Need to Know
|
 |
On 7 May 2026, students across 8,809 schools and universities were unable to access Canvas after the platform was defaced by ShinyHunters.
ShinyHunters had been inside Infrastructure's environment since 30 April. Eight days. No malware. No anomalous traffic. Just a vulnerability in a free educator trial account that nobody had held to the same security standard as the production platform. By the time the defacement hit, 275 million records were already gone. The reason this keeps happening is not that the attacks are sophisticated. Most security stacks have no baseline for what normal looks like in a SaaS environment. No query volume baseline. No OAuth authorisation monitoring. No lateral movement visibility across SaaS integration chains.
If your organisation runs a SaaS platform with tiered accounts, free tiers, or third-party integrations, the full kill chain analysis is worth your time before the next campaign lands.
|
|
Read all about it here
|
Service Spotlight:
Defence Industry Security Program
|
Red Piranha delivers end-to-end DISP enablement through a uniquely integrated model that combines governance, operational cyber defence, and ongoing compliance sustainment under one Australian-owned engagement. Unlike providers that stop at documentation or offer only MSSP services, Red Piranha covers all four DISP outcome areas, including Governance, Personnel Security, Physical Security, and ICT & Cyber Security. With direct delivery across Governance and Cyber, organisations gain operationalised Essential Eight ML2, 24/7 Australian SOC coverage, SRMP authorship, and continuous evidence generation aligned to Defence assessment expectations.
What sets Red Piranha apart is its ability to transform DISP from a paperwork exercise into a living operational security capability. Through Crystal Eye and eCISO™ retainers, Defence suppliers receive continuous detection, MITRE ATT&CK-aligned threat monitoring, and ongoing readiness support for ASR, OSA, and DDA obligations. Backed by sovereign Australian infrastructure, DISP certification expertise, and proven understanding of Defence security maturity requirements, Red Piranha helps organisations achieve and sustain DISP membership with no handoffs, no fragmented vendors, and no gaps across the security lifecycle.
|
| Get started today |
|
|
|
|
