Search

2019-131a: Emotet malware campaign recommended actions Advisory

Nov 8, 2019 The ACSC recommends organisations consider the following actions to mitigate a number of Emotet/Trickbot infections leading to ransomware attacks, most notably a recent attack on the Victorian health sector using the Ryuk ransomware variant.

Advisory 2020-017: Resumption of Emotet malware campaign Advisory

Oct 30, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has observed the resumption of an ongoing and widespread campaign of malicious emails designed to spread the Emotet malware across a variety of sectors in the Australian economy, including critical infrastructure providers and government agencies.

2019-131a: Emotet malware campaign Alert

Oct 1, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has observed an ongoing and widespread campaign of malicious emails designed to spread Emotet across a variety of sectors in the Australian economy, including critical infrastructure providers and government agencies.

2021 Top Malware Strains Advisory

Aug 5, 2022 This joint Cybersecurity Advisory (CSA) was coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC).

Report and recover from malware Guidance

Nov 10, 2023 If you’ve fallen victim to a malware attack, find out what to do and who to contact.

Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure Advisory

May 17, 2022 The cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom are releasing this joint Cybersecurity Advisory (CSA). The intent of this joint CSA is to warn organizations that Russia’s invasion of Ukraine has altered the geopolitical balance in ways that could expose organizations both within and beyond the region to increased malicious cyber activity. This activity may occur as a response to the unprecedented economic costs imposed on Russia as well as materiel support provided by the United States and U.S. allies and partners.

Annual Cyber Threat Report 2023-2024 Reports and statistics

Nov 20, 2024 ASD’s Annual Cyber Threat Report 2023–24 provides an overview of the key cyber threats impacting Australia, how ASD’s ACSC is responding and cyber security advice for Australian individuals, organisations and government to protect themselves online.

2022-02: Australian organisations should urgently adopt an enhanced cyber security posture Advisory

Apr 28, 2022 Entities should follow ACSC advice and act on improving their resilience within a heightened threat environment.

ASD's ACSC Annual Cyber Threat Report, July 2021 to June 2022 Reports and statistics

Nov 4, 2022 The Annual Cyber Threat Report is the Australian Signals Directorate’s Australian Cyber Security Centre's (ASD’s ACSC) flagship unclassified publication. The Report provides an overview of key cyber threats impacting Australia, how the ACSC is responding to the threat environment, and crucial advice for Australian individuals and organisations to protect themselves online.

ASD Cyber Threat Report 2022-2023 Reports and statistics

Nov 14, 2023 The ASD's Cyber Threat Report is ACSC’s flagship unclassified publication. The Report provides an overview of key cyber threats impacting Australia, how the ACSC is responding to the threat environment, and crucial advice for Australian individuals and organisations to protect themselves online

ASD's ACSC Annual Cyber Threat Report, July 2019 to June 2020 Reports and statistics

Sep 3, 2020 This report has been jointly produced by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), the ACIC and the AFP, and is the first unclassified annual threat report since the ASD's ACSC became part of the ASD in July 2018. The report identifies and describes key cyber security threats targeting Australian systems and networks, and provides a range of examples and real-world case studies of malicious activity targeting Australian networks, between July 2019 and June 2020. It provides mitigation advice that all Australians and organisations can take to defend against these threats.

Malware Threat

Nov 10, 2023 Malware (short for 'malicious software') is software that cybercriminals use to harm your computer system or network. Cybercriminals can use malware to gain access to your computer without you knowing, in targeted or broad-based attacks.

Threat update: COVID-19 malicious cyber activity 20 April 2020 Advisory

Apr 20, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) continues to receive reports from individuals, businesses and government departments about a range of different COVID-19 themed scams, online frauds and phishing campaigns. This threat update is about raising awareness of the evolving nature of COVID-19 related malicious cyber activity impacting Australians.

The silent heist: cybercriminals use information stealer malware to compromise corporate networks Advisory

Sep 2, 2024 Information stealer malware steals user login credentials and system information that cyber threat actors exploit, predominantly for monetary gain. Information stealers have been observed in attacks against multiple organisations and sectors worldwide, including Australia. This advisory provides readers with cyber security guidance on information stealers, including threat activity and mitigation advice for individuals and organisations.

2021-003: Ongoing campaign using Avaddon Ransomware Advisory

May 8, 2021 The Australian Cyber Security Centre (ACSC) is aware of an ongoing ransomware campaign utilising the Avaddon Ransomware malware. This campaign is actively targeting Australian organisations in a variety of sectors. This advisory provides details of Avaddon threat actors, dark web activity, targeted countries and sectors, the malware infection chain, and known Techniques, Tools, and Procedures (TTPs). If activity is identified relating to this advisory please report any findings to the ACSC.

How to protect yourself from malware Guidance

Nov 10, 2023 Malware (short for 'malicious software') is software that cybercriminals use to harm your computer system or network. Cybercriminals can use malware to gain access to your computer without you knowing, in targeted or broad-based attacks.

2021 Trends Show Increased Globalized Threat of Ransomware Advisory

Feb 10, 2022 This joint Cybersecurity Advisory—authored by cybersecurity authorities in the United States, Australia, and the United Kingdom—provides observed behaviors and trends as well as mitigation recommendations to help network defenders reduce their risk of compromise by ransomware.

Threats

Nov 3, 2022 Find the latest cyber security threats

Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways Advisory

Feb 28, 2024 The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), Multi-State Information Sharing & Analysis Center (MS-ISAC), Australian Signals Directorate’s Australian Cyber Security Center (ASD’s ACSC), and the UK’s National Cyber Security Centre (NCSC), are releasing this joint Cybersecurity Advisory (CSA) in response to the active exploitation of CVE-2023-46805, CVE-2024-21887, CVE-2024-22024, and CVE-2024-21893—multiple vulnerabilities affecting Ivanti Connect Secure and Ivanti Policy Secure gateways.

Watch out for threats

Nov 2, 2022 Know what to look for to stay in control of your devices and applications.

Strategies to Mitigate Cyber Security Incidents – Mitigation Details Publication

Feb 1, 2017 The Australian Signals Directorate (ASD) has developed prioritised mitigation strategies to help cyber security professionals in all organisations mitigate cyber security incidents caused by various cyber threats. This guidance addresses targeted cyber intrusions (i.e. those executed by advanced persistent threats such as foreign intelligence services), ransomware and external adversaries with destructive intent, malicious insiders, ‘business email compromise’, and industrial control systems.

Advanced Persistent Threat (APT) actors targeting Australian health sector organisations and COVID-19 essential services Alert

May 8, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) is aware that Advanced Persistent Threat (APT) actors are actively targeting health sector organisations and medical research facilities.

Best practices for event logging and threat detection Publication

Aug 22, 2024 This publication defines a baseline for event logging best practices to mitigate cyber threats.

Australian Signals Directorate releases the annual Cyber Threat Report for 2023–24 News

Nov 20, 2024 ASD’s Cyber Threat Report 2023–24 provides an overview of the key cyber threats impacting Australia, how ASD’s ACSC is responding and cyber security advice for Australian individuals, organisations and government to protect themselves online.

Threat update: COVID-19 malicious cyber activity 27 March 2020 Advisory

Mar 27, 2020 This update is designed to raise awareness of increasing COVID-19 themed malicious cyber activity, and provide practical cyber security advice that organisations and individuals can follow to reduce the risk of being impacted.

CISA, FBI, NSA, and international partners issue advisory on demonstrated threats and capabilities of Russian state-sponsored and cyber criminal actors News

Apr 22, 2022 Since Russia’s invasion of Ukraine in February, the risk of malicious cyber operations by Russian state-sponsored and criminal cyber actors has increased. The threats to critical infrastructure could impact organisations both within and beyond Ukraine.

Personal cyber security: First steps guide Guidance

Nov 10, 2022 The first of three guides designed to help everyday Australians understand the basics of cyber security, learn how you can take action to protect yourself from common cyber threats.

ASD's ACSC Annual Cyber Threat Report, July 2020 to June 2021 Reports and statistics

Sep 15, 2021 The ASD's ACSC Annual Cyber Threat Report 2020–21 has been produced by the Australian Cyber Security Centre, with contributions from the Defence Intelligence Organisation (DIO), Australian Criminal Intelligence Commission (ACIC), Australian Security Intelligence Organisation (ASIO), The Department of Home Affairs and industry partners.

Australian Signals Directorate releases 2023 ASD Cyber Threat Report News

Nov 15, 2023 The Australian Signals Directorate has released its fourth ASD Cyber Threat Report.

ASD's ACSC Annual Cyber Threat report 2020-21 News

Sep 16, 2021 The Assistant Minister for Defence, The Hon Andrew Hastie MP, released the Australian Signals Directorate’s Australian Cyber Security Centre's (ASD’s ACSC) Annual Cyber Threat Report 2020-21.