KOMATSU AUSTRALIA PTY LTD | Information Security Portal
komatsu.com.au ↗
Information Security
Komatsu Australia · Information Security

Protecting Komatsu Australia.

The Information Security function for Komatsu Australia. We protect the systems, data, and people that make Komatsu work — and provide the policies, tools, and support that let the business operate confidently.

Report an incident View our services
24/7
Monitored security operations
3,000+
Komatsu Australia users protected
AU
Sydney-based, all AU sites
If you think you've been targeted by phishing, a scam call, or any cyber threat — report it immediately. Don't click links, reply, or hand over information. Email cybersecurity@komatsu-security.com or call +61 2 9097 4700. We'd rather investigate ten false alarms than miss one real incident.
Report phishing email Report suspicious call Report lost device View security policies
What we do

Six functions. One mission: keep Komatsu safe.

Information Security at Komatsu Australia spans operations, governance, identity, and people. Most employees interact with us through the awareness program and the incident reporting channel — both essential to how we work.

01

Security Operations

24/7 monitoring of Komatsu Australia's endpoint, network, and cloud telemetry. Sydney-based SOC.

02

Identity & Access

MFA, conditional access, privileged identity management for all Komatsu accounts.

03

Vulnerability Management

Continuous scanning and prioritised remediation across endpoints, servers, and cloud.

04

Awareness & Training

Phishing simulations and role-based training so everyone can recognise threats.

05

Governance & Risk

Information security policy, third-party risk, advisory work, and audit support.

06

Incident Response

Investigation, containment, recovery, and post-incident review for confirmed incidents.

If you see something

Tell us. Always.

The most important thing any Komatsu employee can do for our security posture is to report anything suspicious — even if you're not sure.

Reports are treated confidentially. There is no consequence to you for raising a concern that turns out to be benign.

~12%
of reports last quarter were genuine threats.
The other 88% were still worth a look.

Suspicious email

Use the Report Phishing button in Outlook (built-in to Microsoft 365), or forward the message as an attachment to cybersecurity@komatsu-security.com.

Suspicious call or text

Don't engage. End the call. Note the number and any details. Email cybersecurity@komatsu-security.com or call us on the line below.

Account compromise

Call +61 2 9097 4700 immediately — don't use email if your account may be compromised. We'll start containment within minutes.

Recent advisories

What we're seeing right now.

Recent security bulletins published to Komatsu Australia. Older advisories are available through the SharePoint security site.

22 May 2026
Active

Phishing campaign impersonating ATO

Several Komatsu Australia mailboxes have received emails claiming to be from the ATO about a 2025 tax return refund. Do not click links. Forward to the Security team and delete.

18 May 2026
Reminder

MFA registration deadline extended

Staff who have not yet completed multi-factor authentication enrolment now have until 31 May to do so. After that date, sign-in to Komatsu systems will be blocked until enrolment is complete.

11 May 2026
Action

VPN client update available

A new version of the Komatsu remote access client is being progressively rolled out via Intune. If prompted to restart, please save your work and accept the update.

02 May 2026
Info

Mining sector targeted by ransomware group

A known ransomware actor has been observed targeting AU mining sector organisations through compromised remote access tooling. Komatsu Australia is not currently impacted; the Security team is monitoring.