New Zealand cyber defence firm wins top award amid daily attacks

New Zealand's top intelligence officials have warned that the private sector is increasingly being targeted by foreign cyber-espionage agents seeking access to government information. This follows a period in which serious cyber incidents have occurred almost daily, with state-backed hackers responsible for a significant proportion of attacks on digital infrastructure.

Espionage threats

The Security Intelligence Service (NZSIS) has detected multiple cases of foreign state actors attempting covert access to sensitive government data. The information sought ranges from policy positions to technological advances and research. The NZSIS has highlighted the risk posed by the increasingly blurred line between public and private sector vulnerabilities, noting that companies are often targeted as a weaker entry point to governmental systems.

Recent figures from the Government Communications Security Bureau (GCSB) indicate that New Zealand recorded approximately one major cyber incident per day in the past year. About a quarter of these incidents have been linked to state-sponsored actors, underscoring the persistent risk of geopolitical cyber operations within the country's digital ecosystem.

DEFEND recognised

Amid increasing concern about cyber threats, New Zealand cybersecurity company DEFEND has won a global award for its work with a government department. The firm was recognised as Microsoft's Global Security Partner of the Year after implementing advanced cybersecurity controls, including artificial intelligence-driven defensive systems for one of New Zealand's public sector organisations.

Chief Operating Officer Shiv Prasad said DEFEND's approach is based on maintaining a cyber-resilient environment for New Zealand organisations in the face of international risks.

"At DEFEND we've always had a kiwi mindset of doing what needs to be done to stay ahead of international cybercriminals. It's quite humbling to find out that while we've had our heads down we've been recognised as a global leader," said Shiv Prasad, Chief Operating Officer, DEFEND.

Prasad noted a significant escalation in both the sophistication and volume of threats targeting local businesses, aligning with warnings from national security authorities.

"Cyber criminals have budgets many times New Zealand's annual GDP, and with the emergence of new technologies such as agentic AI, these threats are only increasing in frequency and intensity. These can cause a lot of strife for Kiwi organisations, and can be more catastrophic than a natural disaster like an earthquake or flood.

"Without robust cybersecurity in place, businesses can also unwittingly provide a back door for foreign cyber espionage agents seeking sensitive state data, not to mention being a target for cyber-extortion (blackmail) themselves," said Prasad.

Sector collaboration

DEFEND's international recognition is viewed by its leadership as validation of the ability of New Zealand companies to provide security at the highest level. Chief Executive Greg Patchell said the company's work demonstrates that cybersecurity solutions of global standard are accessible entirely within New Zealand.

"To be recognised on the global stage with this award is an incredible achievement not only for our team but for New Zealand. It proves that world-leading cybersecurity can be delivered right here and NZ organisations can work with a New-Zealand-based security partner that meets the highest international standards," said Greg Patchell, Chief Executive, DEFEND.

Patchell added that while DEFEND is expanding its international client base, the principal mission remains the protection of New Zealand organisations.

"The reason DEFEND began was to keep New Zealand safe from cyber attacks and that's not changing any time soon," said Patchell.

Cyber landscape

Officials and cybersecurity experts distinguish between the three main types of digital threat: cyber crime, which is typically motivated by financial gain; cyber espionage, largely conducted by governments or state-sponsored entities; and cyber hacktivism, in which attackers attempt to embarrass or disrupt organisations for ideological reasons.

Current trends point to escalating use of artificial intelligence by both attackers and defenders, with so-called 'AI versus AI' strategies now a hallmark of high-level digital conflict. Other emerging issues include the shift of security perimeters from office environments to individual users, rising risks in supply chains and third-party relationships, increased regulatory scrutiny, and the adoption of Zero Trust models where no user or device is automatically trusted inside networks.

International cooperation

Last month, sixty-five countries signed a United Nations convention aimed at creating a framework for international action against cybercrime. The agreement seeks to harmonise legal standards, enable better information sharing, and strengthen defences against cyber-attacks targeting personal data, financial infrastructure and national assets.