The Rise of Stealth Impact Attacks
In the past year, cyberattacks have been increasingly focused on “stealth impact”, quietly degrading performance, inflating cloud and AI costs, and eroding revenue over time. This includes tactics such as mass creation of fake accounts, bot-driven abuse of transactions, and the exploitation of AI chatbots to exhaust costly tokens.
At the same time, illegal data scraping is on the rise. AI agents are being used to harvest content from digital media and healthcare organisations, resulting in direct revenue loss and increasing the risk of downstream fraud.
Attacks that once took weeks can now unfold in hours, with threat actors increasingly sharing tools and AI models to scale their operations globally.
This shift is compounded by a growing imbalance between machine-speed attacks and human-speed defence. While larger enterprises are investing in AI-driven security capabilities, many organisations, particularly mid-sized businesses, continue to face challenges around visibility, skills shortages, and fragmented security environments.
As cyberattacks become increasingly industrialised, organisations must ensure their defences evolve in tandem, becoming faster, smarter, and capable of matching the speed and scale of threats they face. Static defence models are no longer viable.
Tips for Building Cyber Resilience
Australian organisations must take strategic steps to build resilience:
- Comprehensive observability: Organisations must be able to discover, inventory, monitor and manage all internal and external traffic, including APIs and AI models, to maintain full visibility into what enters and leaves their environments.
- Treat AI agents as insider threats: The rapid adoption of AI introduces a new layer of risk. AI agents often operate with privileged access across systems and must be treated as potential insider threats. If compromised or manipulated, they can move laterally at scale. Implementing zero trust principles, microsegmentation, and strong isolation controls is critical to establishing guardrails.
- Adopt novel security defences: Legacy security tools are not equipped to address emerging threats such as prompt injections and AI-driven abuse. Organisations must identify gaps in their current security posture and invest in specialised, AI-augmented defences that operate at machine speed.
With Australia now one of the most targeted regions, particularly across healthcare, financial services, retail, and media, the implications for local organisations are significant. Beyond the immediate operational disruption and financial loss, organisations must now navigate heightened regulatory scrutiny, potential erosion of customer trust and the risk of long-term damage to brand.
Those who invest early in resilience will be best placed not only to withstand escalating cyber threats but to turn the focus in adapting to the ever-evolving threat landscape, into a long-term competitive advantage.
