You can search for keywords to find pages that can help you e.g. scam
Contact us
Portal login
back to main menu
Learn about who we are and what we do.
Interactive tools and advice to boost your online safety.
Advice and information about how to protect yourself online.
Common online security risks and advice on what you can do to protect yourself.
Respond to cyber threats and take steps to protect yourself from further harm.
Resources for business and government agencies on cyber security.
Displaying results for Displaying 31 - 60 of 517 results.
Identifying and Mitigating Living Off the Land Techniques Advisory
Feb 8, 2024 This Guide, authored by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), and the following agencies (hereafter referred to as the authoring agencies), provides information on common living off the land (LOTL) techniques and common gaps in cyber defense capabilities.
Understanding Ransomware Threat Actors: LockBit Advisory
May 8, 2024 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) alongside international partners have released a joint advisory on the ransomware variant LockBit. It functions as an affiliate-based Ransomware-as-a-Service (RaaS) model where affiliates are recruited to conduct ransomware attacks using LockBit ransomware tools and infrastructure.
Fundamentals of Cross Domain Solutions Publication
Oct 6, 2021 This publication introduces technical and non-technical audiences to cross domain security principles for securely connecting security domains.
Join the Cyber Threat Intelligence Sharing service through Sentinel News
Mar 20, 2024 The Australian Signals Directorate’s (ASD’s) Cyber Threat Intelligence Sharing (CTIS) is a two-way sharing platform that enables government and industry partners to receive and share information about malicious cyber activity at machine speed.
Threats
Protecting Against Cyber Threats to Managed Service Providers and their Customers Advisory
May 12, 2022 This advisory describes cybersecurity best practices for information and communications technology (ICT), focusing on guidance that enables transparent discussions between MSPs and their customers on securing sensitive data.
DDoS threats being made against Australian organisations Alert
May 25, 2020 Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of a number of Denial of Service (DoS) for ransom threats being made against Australian organisations, primarily in the banking and finance sector.
Hardening Microsoft 365, Office 2021, Office 2019 and Office 2016 Publication
Jul 24, 2023 Workstations are often targeted by malicious actors using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.
ASD's ACSC Threat Report 2016 Reports and statistics
Oct 15, 2016 This is the second Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) Threat Report. It continues to reflect on the experience, focus, and mandates of the ASD's ACSC’s member organisations. The report provides an insight into what the Centre has been seeing, learning, and responding to, focusing on specific areas of change or new knowledge obtained.
Best practices for event logging and threat detection News
Aug 22, 2024 Today we have released new event logging guidance, alongside our international partners, that defines the baseline for logging best practices to mitigate malicious cyber threats.
Gateway Security Guidance Package: Gateway Operations and Management Publication
Jul 29, 2022 This guidance is one part of a package of documents that forms the Australian Signals Directorate (ASD)’s gateway security guidance package written for audiences responsible for the operation and management of gateways.
Launch of the Annual Threat Report News
Nov 4, 2022 The Annual Cyber Threat Report is ACSC’s flagship unclassified publication. The Report provides an overview of key cyber threats impacting Australia, how the ACSC is responding to the threat environment, and crucial advice for Australian individuals and organisations to protect themselves online.
Russian FSB cyber actor Star Blizzard continues worldwide spear-phishing campaigns Advisory
Dec 8, 2023 The Russia-based actor is targeting organisations and individuals in the UK and other geographical areas of interest.
ASD's ACSC and partners alert organisations to top 2021 malware strains News
Aug 5, 2022 The top types of malicious software – or malware – seen by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and international partners through 2021 have been detailed, along with advice on how to counter them.
Increased cyber threat activity targeting Snowflake customers Alert
Jun 1, 2024 The ASD’s ACSC is aware of increased cyber threat activity regarding Snowflake customers.
The Silent Heist: Cybercriminals use information stealer malware to compromise corporate networks News
Sep 2, 2024 New advisory released on information stealer malware used in cybercrime attacks.
2023-03: ASD's ACSC Ransomware Profile – Lockbit 3.0 Advisory
Jun 15, 2023 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of Lockbit 3.0 which is the newest version of Lockbit ransomware. It is used by cybercriminals to conduct ransomware attacks against multiple sectors and organisations worldwide, including Australia. Once gaining access to a victim’s environment, cybercriminals use this ransomware for similar purposes as other variants such as encrypting their data, and extorting a ransom to return access to the sensitive files.
ACSC Threat Report 2017 Reports and statistics
Oct 15, 2017 This is the third Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) Threat Report. It continues to reflect on the experience, focus, and mandates of the ASD’s ACSC’s member organisations. The report provides an insight into what the Centre has been seeing, learning, and responding to, focusing on specific areas of change or new knowledge obtained.
Malware targeting Centreon software Alert
Feb 16, 2021 ANSSI identifies campaign targeting Centreon system monitoring software.
ACSC Advisory 2019-125: Targeting of Microsoft SharePoint CVE-2019-0604 Advisory
May 6, 2019 This ACSC advisory provides recommendations for securing Microsoft SharePoint and advice on identifying potential successful exploitation of this vulnerability.
2023-01: ASD's ACSC Ransomware Profile - Royal Advisory
Jan 24, 2023 The Australian Signals Directorate's Australian Cyber Security Centre (ASD's ACSC) is aware of a ransomware variant called Royal, which is being used by cybercriminals to conduct ransomware attacks against multiple sectors and organisations worldwide, including Australia. Once gaining access to a victim’s environment, cybercriminals use this ransomware for similar purposes to other variants such as encrypting their data and extorting a ransom to return access to the sensitive files.
Protecting against VPNFilter malware Advisory
May 15, 2018 Once a malicious actor compromises a device using VPNFilter malware, they are able to collect network traffic (including website credentials) traversing the device. Importantly, the malware can also be used to disable the device.
2019-126: Recommendations for mitigation of vulnerable version of Telerik UI Advisory
May 16, 2019 The tools to exploit this vulnerability have been publicly published and require only basic knowledge or skills to use successfully. Any servers currently running a vulnerable version should be considered at risk and remediation steps should be taken.
Hunting Russian Intelligence “Snake” Malware Advisory
May 10, 2023 This Cybersecurity Advisory (CSA) provides background on Snake’s attribution to the FSB and detailed technical descriptions of the implant’s host architecture and network communications.
2019-130: Password spray attacks – detection and mitigation strategies Advisory
Aug 5, 2019 This advisory contains detection and mitigation guidance, some of which has been successfully deployed in recent investigations.
ASD's ACSC Threat Report 2015 Reports and statistics
Jul 15, 2015 This report describes the range of cyber adversaries targeting Australian networks, their motives, and the type of malicious activities they are conducting and their impact on Australian networks during 2014. It also offers mitigation advice on how organisations can defend against these activities.
Increased Global Ransomware Threats Alert
Feb 10, 2022 In 2021, cybersecurity authorities in the United States, Australia, and the United Kingdom observed an increase in sophisticated, high-impact ransomware incidents against critical infrastructure organizations globally.
Sextortion campaign Alert
Jul 24, 2019 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of a sextortion scam email campaign targeting the Australian community.
Revamped guide to protect Australian businesses against cyber threats News
Jun 22, 2023 Australian businesses have a new source of help to understand and combat cyber threats through the refreshed Small Business Cyber Security Guide and new video developed by the The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC).
ASD's ACSC has launched a new campaign on Business Email Compromise News
Jun 28, 2022 With the end of the financial year ushering in tax season, Australians are urged to strengthen their email security and be alert to criminals trying to fool them into making false payments or giving up details that could make them an easy target for cyber crime.
