Australia’s 72‑Hour Ransomware Payment Reporting Regime Enters Phase 2 in 2026
Transition to a Compliance‑Focused Phase From 1 January 2026, Australia’s mandatory ransomware and cyber extortion payment reporting regime moves into its Phase 2 “compliance and education” approach, signalling a more actively compliance‑focused posture from regulators while continuing to provide guidance…