Australian businesses face a new cyber baseline as regulators move to align guidance with cloud, SaaS and AI-driven threats.