All archived alerts and advisories Title TypeAdvisoryAlert StatusCRITICALHIGHMEDIUMLOW AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 13 May 2021 Alert rating: High Critical vulnerability discovered in HTTP.SYS in Microsoft Windows A remote code execution vulnerability could enable a malicious cyber actor to compromise vulnerable Microsoft Windows hosts. The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) strongly recommends applying available patches. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 10 May 2021 Alert rating: High Multiple high severity vulnerabilities discovered in the Exim mail server Exim vulnerabilities could enable a malicious cyber actor to compromise vulnerable Exim servers. The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) strongly recommends applying available patches. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 08 May 2021 Alert rating: High Avaddon Ransomware Increase in Avaddon ransomware attacks in Australia. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 08 May 2021 Advisory 2021-003: Ongoing campaign using Avaddon Ransomware The Australian Cyber Security Centre (ACSC) is aware of an ongoing ransomware campaign utilising the Avaddon Ransomware malware. This campaign is actively targeting Australian organisations in a variety of sectors. This advisory provides details of Avaddon threat actors, dark web activity, targeted countries and sectors, the malware infection chain, and known Techniques, Tools, and Procedures (TTPs). If activity is identified relating to this advisory please report any findings to the ACSC. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 27 Apr 2021 Alert rating: High Potential exploitation of Click Studio’s PasswordState software On 24 April 2021, Australian software company Click Studios announced a compromise of the software update process for their enterprise password management software PasswordState, used by organisations in Australia and globally. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government 21 Apr 2021 Alert rating: High Exploitation of Pulse Connect Secure Vulnerabilities New advice for mitigating Pulse Connect Secure Virtual Private Network (VPN) vulnerabilities. Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government Pagination Previous page ‹‹ Page 13 Next page ›› Alerts and Advisories View our recent alerts and advisories Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary
