Australia’s critical infrastructure operators may be underprepared for emerging cyber threats delivered via drones, according to new independent research conducted by the University of Canberra in collaboration with Australian counter-drone specialist DroneShield.
The study, led by researchers from Innovation Central Canberra (ICC) at the University of Canberra, examined the potential for drones to be used as vectors for cyber-attacks against critical infrastructure. While no confirmed domestic incidents of drone-enabled cyber-attacks have been recorded to date, the report warns that limited detection capabilities, low industry awareness and a lack of targeted government guidance are creating growing vulnerabilities.
The research comes as drone technology becomes increasingly capable, affordable and accessible across Australia, reshaping both physical and cyber security threat landscapes. Overseas, malicious actors are already experimenting with drone-borne cyber techniques, raising concerns that similar tactics could emerge locally as capabilities continue to evolve.
Professor Frank den Hartog (pictured), Cisco Research Chair in Critical Infrastructure at the University of Canberra, said the findings highlight both a risk and an opportunity for Australia’s security and technology sectors.
“We know how drones have changed traditional warfare, but are we oblivious to the role they can play in cyber security?” he said. “That’s a worry, and also an opportunity for Australia’s drone and cyber industry.”
The project involved targeted analysis and interviews with critical infrastructure operators, carried out by Professor den Hartog alongside ICC students Andrew Giumelli and Simone Chitsinde. Researchers found that while awareness of physical drone threats is increasing, drone-enabled cyber risks remain poorly understood and rarely factored into existing security and resilience programs.
The report cautions that drones should no longer be viewed as an emerging technology. Their rapid advancement means operators may need to reassess the likelihood and relevance of drone-enabled cyber threats within the next five years, particularly as detection capabilities and reporting mechanisms remain underdeveloped.
According to the researchers, the convergence of rising drone capability, limited industry awareness and minimal government guidance is creating a widening gap in Australia’s preparedness. This gap is further compounded by the lack of consistent reporting on drone-related cyber incidents, making it difficult to accurately assess risk levels.
Professor den Hartog said the findings point to the need for stronger education, improved knowledge-sharing and deeper collaboration between industry, government and research institutions. He also encouraged operators to regularly review how drones are used within their own operations, assess associated cyber risks, and integrate drone-related threats into broader security frameworks.
The research also highlights the role of Innovation Central Canberra’s student-led applied research model, which provides industry with a secure environment to test assumptions, refine system-level thinking and reduce uncertainty around high-consequence technologies.
DroneShield’s involvement in the project underscores the importance of research–industry collaboration in strengthening Australia’s sovereign security capability. Both organisations said they are exploring opportunities to continue the partnership as drone and counter-drone technologies continue to evolve.
