XCD IT

XCD IT

Share

Nearby businesses

Elevate360degree
Elevate360degree
4123

XCD IT - Exceptional Business IT & Network Support 07 3085 7447

WE DELIVER:
- Faster IT Support Response
- Greatly Increased Network Reliability
- Lower IT Support Costs
- Latest Monitoring and Maintenance Tools for your network

Call us now on 07 3085 7447

11/06/2026

At 4am Wednesday, cane farmers around Mackay got a phone call they weren't expecting.

Stop harvesting.

A cyber attack had just shut down two of Mackay Sugar's mills, Farleigh and Racecourse, both barely a week into the crushing season. Trains already on the tracks had to be rolled back to the factories using fallback measures.

Sugar. Trains. Hackers.

Strange combination.

Mackay Sugar is Australia's second-largest raw sugar producer. Around 1,300 mostly family-owned farms supply its three mills, processing roughly 700,000 tonnes a year. So when something digital takes the operation offline, it's not abstract. It's people standing in paddocks at sunrise, wondering when they can cut cane again.

Canegrowers Mackay's Michelle Martin had a quietly grim take: if a shutdown like this has to happen, better now than halfway through the crush.

Local farmer Andre Camilleri said what a lot of growers are probably thinking... that it's concerning the mills and the cane rail network were vulnerable in the first place.

Professor Ryan Ko from the University of Queensland put it plainly. Anything running an operating system can be hit. Sugar mills. Trains. Water plants. Hospitals.

β†’ Big organisations have stronger defences
β†’ But they're also bigger targets
β†’ And these attacks are getting more common, not less

Mackay Sugar hasn't given a timeline for a restart yet. The third mill at Marian is due to start crushing next week.

For now, the harvesters sit. The trains sit. And a regional industry waits on people in server rooms a long way from the cane fields.

This attack on Mackay Sugar shows how vulnerable critical regional infrastructure has become. It's not just about lost revenue or delayed harvests anymore. It's about operational continuity when systems go down.

If your organisation relies on operational technology, aging systems, or connected infrastructure, the question isn't if you'll face a cyber incident... It's when.

XCD IT specialises in protecting the systems that keep essential operations running. Don't wait for a 4am phone call to find out your defences aren't enough.

πŸ“ž Contact XCD IT today for a cybersecurity assessment tailored to operational environments.

What cybersecurity measures does your organisation have in place? Share your thoughts in the comments.

08/06/2026

Token prices fell 95%.
AI bills kept climbing.

Here's the part most boards aren't seeing yet. The cost of a million tokens dropped from around $20 in late 2022 to about $0.40 by mid-2025. That should have been a finance win. Instead, average monthly enterprise AI spend climbed from $63,000 last year to $85,500 this year, and nearly half of companies now burn through more than $100,000 a month on AI.

Cheaper fuel didn't shrink the bill. It changed what we drive.

A quick prompt used to be a trip to the corner store. Now teams are running reasoning models and agentic workflows that think out loud for thousands of tokens before answering. In one documented benchmark, a reasoning model used over 600 tokens to produce two words.

Two words.

And the vendor spread is wild. The exact same query across different models can cost 10x more, depending on which one you pick. Pick the wrong model for the wrong use case, multiply that across an org, and the math gets ugly fast.

A few things worth sitting with:

β†’ 85% of companies still can't clearly show ROI on AI
β†’ Most are bolting AI onto old processes instead of rethinking the work itself
β†’ Token usage rarely gets tracked the way cloud spend does

We treat cloud costs with FinOps discipline. Forecasts, thresholds, and real visibility into what's being consumed and why. AI spend deserves the same rigour, with observability into what every workflow actually costs per successful outcome.

The biggest lever, though, sits further upstream. The companies getting this right decided carefully which problems were worth solving before they spent a dollar trying to solve them.

Falling unit prices are not the same as falling costs. Appetite scales faster than pricing does.

So a question for the finance and tech leaders reading this... are you tracking token usage at the workflow level yet, or is it still buried inside a vendor invoice nobody fully reads? Like and comment if your board has started asking the real question. πŸ‘‡

Multi-Factor Authentication for SMBs in Australia: Why Passwords Are No Longer Enough - XCD IT Brisbane 04/06/2026

Hackers don't guess your password. They already have it.

Billions of login credentials are sitting in leaked databases from old breaches. Automated tools just run through the list until something works.

Multi-factor authentication stops this cold. Even with the correct password, they can't get in without the second verification on your phone.

The best part? If your business is on Microsoft 365, MFA is already included. It just needs to be turned on.

5 minutes to set up. Blocks over 99% of automated attacks.
Worth doing today.

Read more: https://xcdit.com.au/multi-factor-authentication/

Multi-Factor Authentication for SMBs in Australia: Why Passwords Are No Longer Enough - XCD IT Brisbane In addition, inconsistent enforcement of security measuresΒ  -Β  such as multi-factor authentication or access controlsΒ  -Β  creates gaps

03/06/2026

The email looks real. The logo looks real. Even the sender address looks real. Phishing attacks work because they impersonate the brands your team already trusts β€” Microsoft, Australia Post, Netflix, and more. Knowing which brands are being faked most often is the first step to catching them. Here's the full list: https://xcdit.com.au/most-common-brands-used-in-phishing-attacks/

31/05/2026

Ransomware doesn't just hit big corporations β€” it hits businesses like yours. And the average recovery cost? Devastating. Find out what you need to know and do NOW πŸ‘‡

πŸ”— https://xcdit.com.au/ransomware/

28/05/2026

Is your business truly protected from cyber attacks... or just hoping nothing happens? πŸ”

Cyber threats like ransomware, phishing, and data breaches are becoming more common -and small businesses are often the easiest targets. Without the right protection, one attack can disrupt your entire operation.

πŸ‘‰ See how to protect your systems, data, and users:
https://xcdit.com.au/services/cyber-security/

25/05/2026

What if your business could scale without expensive hardware or downtime? πŸš€
Cloud solutions give you the flexibility to grow, collaborate, and stay secure - without the headaches of traditional IT systems.
πŸ‘‰ Learn how your business can benefit:
https://xcdit.com.au/services/cloud-solutions/

24/05/2026

Is your IT support actually helping your business grow... or just fixing problems after they happen? πŸ€”

Many SMBs don’t realise the difference between IT support and managed services until they face downtime, security risks, or unexpected costs.

πŸ‘‰ Find out which approach is right for your business:
https://xcdit.com.au/it-support-vs-managed-services/

11/05/2026

Someone in a garage can now do what nation-states couldn't.

That is not a metaphor. That is what Australia's regulator said out loud, on the record. Mythos has high-level coding capability that can surface vulnerabilities that have been sitting in systems for years.

The worry is no longer just organised state actors.

The Australian Securities and Investments Commission just issued an urgent warning to the financial sector. Organisations can no longer rely on standard 12-month security planning horizons. Those timelines fail when frontier AI systems can identify and weaponise network weaknesses in a matter of days.

Macquarie chief executive Shemara Wikramanayake confirmed her bank is actively testing systems against these exact models. They are scrambling to find and patch vulnerabilities that have existed for years before an independent bad actor uses a model to exploit them first.

Financial institutions are adopting AI at twice the rate of their regulatory supervisors. Yet even at that speed, their security practices struggle to match the output capabilities of systems like the Claude Mythos Preview under Project Glasswing.

The threat model has completely changed.

Do you think major corporations are moving fast enough to patch these legacy vulnerabilities? Like and share if you agree that standard security timelines are failing us right now. Drop your thoughts below.

21/04/2026

Tech Tip Tuesday!

Still sending follow-up emails asking if anyone has actioned that thing you sent last week?

There's a better way, and it's already built into Microsoft Outlook.

Just type @ and the person's name in the body of your email. Their name gets highlighted, they get a direct notification, and everyone knows who's responsible for what.

Less chasing. More getting things done.

It works in Outlook, Teams, and across Microsoft 365. Chances are you're already paying for it.

Want to get more out of your M365 subscription? We can help.

Happy Tuesday!

Want your business to be the top-listed Business in Brisbane?
Click here to claim your Sponsored Listing.

Telephone

Address


Ground Floor, 477 Boundary Street
Brisbane, QLD
4000

Opening Hours

Monday 8:30am - 5:30pm
Tuesday 8:30am - 5:30pm
Wednesday 8:30am - 5:30pm
Thursday 8:30am - 5:30pm
Friday 8:30am - 5:30pm