19 Jun Security Report – 19 Jun 2026
A strong backup strategy starts with understanding that if data is in the cloud, it isn’t automatically protected—under the shared responsibility model, backups are your responsibility.
So you’ve put a backup strategy in place and feel secure. Unfortunately, that doesn’t guarantee safety. Attackers are now actively targeting backups, which means your backup strategy needs to do more than just store copies.
A strong backup strategy should focus on resilience, isolation, and fast recovery. This means keeping backups separate from your production environment so they’re harder to access or delete during an attack.
A modern backup strategy should also include immutable storage, which prevents data from being changed or deleted. Following the 3‑2‑1‑1‑0 model ensures you have multiple copies across different locations and at least one offline or locked copy. Most importantly, a backup strategy must be tested regularly. Backups are only valuable if you can restore them quickly and reliably when something goes wrong.
Recent Breaches
Australia – Mackay Sugar – Manufacturing
Exploit: Ransomware & Malware
Risk to Business: Moderate: Mackay Sugar, Australia’s second-largest sugar producer, was forced to shut down some of its mills after a ransomware attack. Mackay Sugar operates three cane-processing mills in Queensland and plays a significant role in the country’s sugar industry. The incident was disclosed on June 10, when the company announced it was responding to a cybersecurity event affecting parts of its operations. Reports indicate that the attack impacted operations at two of its mills. In its latest update issued on June 15, Mackay Sugar said it continues to respond to the incident and that significant progress has been made in its recovery efforts. Meanwhile, a ransomware group called “The Gentlemen” named Mackay Sugar on its Tor-based website on June 15, but it has yet to leak any data.
United States – Google Chrome – Technology
Exploit: Zero-day vulnerability
Risk to Business: Moderate: On June 8, Google released emergency security updates to patch another Chrome zero-day vulnerability that is being actively exploited in the wild. The flaw is the fifth Chrome zero-day vulnerability patched by Google since the start of 2026. The high-severity vulnerability, tracked as CVE-2026-11645, stems from an out-of-bounds read and write weakness in Chrome’s V8 JavaScript engine. Attackers can exploit the flaw through specially crafted HTML pages to execute arbitrary code within the browser’s sandbox. Successful exploitation can lead to heap corruption, allowing attackers to access data outside the memory buffer, expose sensitive information or trigger browser crashes. The vulnerability could also be used to bypass security protections such as Address Space Layout Randomization (ASLR), making it easier to achieve code execution through additional flaws. While Google has warned that it may take days or even weeks for the security update to reach all Chrome users automatically, the patch is now available for installation.
Talk to a TCT team member today about implementing Cyber Security strategy plan for your business.
Robert Brown
19/6/2026
Related Articles:
Bad Onboarding Causes Messy Offboarding
M365 Settings Worth Checking