All archived alerts and advisories Title TypeAdvisoryAlert StatusCRITICALHIGHMEDIUMLOW AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 13 Oct 2022 Alert rating: Critical Remote code execution vulnerability present in Fortinet devices A vulnerability (CVE-2022-40684) has been identified in several Fortinet products running certain versions from 7.0.0 onwards, that could allow a malicious cyber actor to bypass authentication and perform unauthorised actions. Affected Australian organisations should apply the available patch and follow Fortinet’s mitigation advice. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 11 Oct 2022 Alert rating: Critical Remote code execution vulnerability present in vm2 sandbox The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of a remote code execution vulnerability in vm2 sandbox versions prior to 3.9.11. Affected Australian organisations should apply the available patch immediately. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure Government 10 Oct 2022 Alert rating: Low Vulnerability Alert – 2 new Vulnerabilities associated with Microsoft Exchange. The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of 2 zero day vulnerabilities associated with Microsoft Exchange Servers 2013, 2016 and 2019 (Exchange). Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 30 Sep 2022 Alert rating: Medium Optus Data Breach To help protect against fraud, Optus has notified customers to look to reputable sources such as Moneysmart and the Office of the Australian Information Commissioner. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure 15 Sep 2022 Advisory Iranian Islamic Revolutionary Guard Corps-Affiliated Cyber Actors Exploiting Vulnerabilities for Data Extortion and Disk Encryption for Ransom Operations The Australian Signals Directorate's Australian Cyber Security Centre (ASD's ACSC) has joined with international cyber security agency partners to co-author an advisory on continued Iranian state-sponsored cyber threats. Organisations are encouraged to apply the recommended mitigations to protect themselves online. Audience focus: Organisations & Critical Infrastructure 08 Aug 2022 Alert rating: Low Are you ready for Australian domain name changes? Australians have until 20 September 2022 to seek priority allocation of an .au direct domain name that matches their existing domain name. Audience focus: Individuals & families Small & medium businesses Organisations & Critical Infrastructure Government Pagination Previous page ‹‹ Page 2 Next page ›› Alerts and Advisories View our recent alerts and advisories Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary
