Sanctions compliance checklist, Iran-linked cyber threat profiles, supply chain risk assessment, and board-level risk briefing templates for Australian businesses.
Comprehensive sanctions and cyber risk toolkit for Australian businesses.
Step-by-step checklist to verify your business complies with Australian and international Iran sanctions requirements.
Detailed profiles of Iran-linked threat actors targeting Australian businesses. Know what to look for.
Templates to assess your supply chain for Iran-linked exposure. Third-party risk evaluation made practical.
What to do if you detect a state-sponsored intrusion. Step-by-step playbook aligned to Australian requirements.
Ready-to-present risk briefing template. Communicate geopolitical cyber risk to non-technical leadership.
Written for Australian businesses. References DFAT sanctions list, ASD advisories, and local reporting requirements.
Needing to understand and communicate geopolitical cyber risk to stakeholders.
Responsible for sanctions compliance and third-party risk management.
Needing threat intelligence on state-sponsored actors targeting Australian infrastructure.
Any organisation with international suppliers, partners, or customers in sensitive regions.
This is not a static risk. In 2024, the Australian Federal Police charged a remittance-company director for transferring approximately $649,000 to sanctioned Iranian banks — a criminal prosecution under Australian sanctions law. Meanwhile, Iran-linked APT groups are accelerating exploitation of new CVEs with PowerShell-based execution vectors and supply-chain compromise campaigns targeting software-update pipelines. OFAC's General License D-2 has expanded permissible exports, creating compliance confusion. Sanctions enforcement is intensifying, threat actors are evolving, and businesses that treat this as a checkbox exercise are exposed. This guide gives you the practical tools to assess your exposure, harden your defences, and brief your board — all in Australian context with current intelligence.
The Australian Federal Police charged a remittance-company director for transferring approximately $649,000 to sanctioned Iranian banks. This marks a significant escalation in Australian enforcement of Iran sanctions and demonstrates that DFAT and law enforcement are actively pursuing violations. Separately, OFAC published General License D-2 on 16 May 2024, amending the Iranian Transactions and Sanctions Regulations (ITSR) to expand categories of permissible exports. Businesses with US nexus or dual-listed obligations must reassess their compliance posture against these changes.
Iran-linked APT groups are accelerating exploitation of newly disclosed CVEs, with campaigns observed using PowerShell-based execution vectors and supply-chain compromise techniques targeting software-update pipelines. These groups continue to target critical infrastructure, financial services, and government-adjacent organisations in allied nations including Australia. The guide includes updated threat actor profiles, known TTPs, and indicators of compromise.
The EU Markets in Crypto-Assets Regulation (MiCA) is activating provisions that require crypto-asset service providers to screen transactions and customers for links to sanctioned Iranian entities. Australian businesses operating across jurisdictions or transacting in digital assets must account for these obligations alongside DFAT and OFAC requirements. The guide covers cross-jurisdictional screening considerations.
One-time purchase. Instant download. Start implementing today.
Get the Guide — $47 AUD →