Search

Recommendations to mitigate DDoS threats being made against Australian organisations Advisory

Feb 25, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of a number of Denial of Service (DoS) for ransom threats being made against Australian organisations, primarily in the banking and finance sector.

Sextortion email campaign impacting Australians Alert

Apr 16, 2020 A large number of Australians are being impacted by an email ‘sextortion’ campaign in which the cyber scammers responsible have threatened to release personal and sensitive information to the recipients’ contacts unless the scammer is paid in cash or bitcoin.

2019-129: Recommendations to mitigate vulnerability in Pulse Connect Secure VPN Software Advisory

Oct 1, 2019 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) recommends users of the affected Pulse Connect Secure VPN software immediately upgrade their software.

Safeguard your business from cyber threats with the Australian Signals Directorate News

May 13, 2024 Australian business owners and organisations can access advice from the Australian Signals Directorate (ASD) to stay secure online.

Summary of Tradecraft Trends for 2019-20 Alert

May 20, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) investigated and responded to numerous cyber security incidents during 2019 and 2020 so far.

VPNFilter malware Alert

May 25, 2018 Australian users need to be aware of VPNFilter malware.

COVID-19 Malicious Scams - Threat Awareness and Guidance Advisory

Mar 27, 2020 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) has produced a detailed report, including practical cyber security advice that organisations and individuals can follow to reduce the risk of harm.

Australia Post SMS Scam - Threat Awareness and Guidance Advisory

Dec 13, 2019 Anyone can be a target, whether you are waiting for an Australia Post delivery or not. Scammers cast their net wide, hoping to catch someone out who might be waiting for a parcel delivery this holiday season.

Cryptomining Threat

Jun 23, 2020 Cryptocurrency mining (cryptomining) uses the processing power of computers to solve complex mathematical problems and verify cybercurrency transactions. The miners are then rewarded with a small amount of cybercurrency.

2019-126: Vulnerable version of Telerik UI being actively exploited by APT actor Alert

May 22, 2020 The Australian Cyber Security Centre (ACSC) has become aware that Advanced Persistent Threat (APT) actors have been scanning for and attempting exploitation against unpatched versions of Telerik UI for ASP.NET AJAX using publicly available exploits. Successful exploitation could allow an attacker to upload files to the vulnerable server to facilitate further compromise.

Hunting Russian Intelligence “Snake” Malware - Joint Cybersecurity Advisory News

May 10, 2023 Today we released a Joint Cybersecurity Advisory with our international partners on the Snake implant. The Snake implant is a sophisticated cyber espionage tool designed and used by Center 16 of Russia’s Federal Security Service for long-term intelligence collection on sensitive targets.

Sextortion campaign - what to do Advisory

Jul 24, 2019 Information about what to do if you receive a sextortion email.

Sextortion campaign - What to do if you receive the email Advisory

Apr 16, 2020 In most cases, there is no reason to be concerned. These emails are typically generated in their thousands by online scammers using limited personal details, with the aim of intimidating recipients into paying the ransom.

Secure Your Website Guidance

Jul 29, 2024 Small business account for over 95% of all businesses in Australia and 72% of them have a website. However, in a world in which websites are increasingly being targeted by cyber criminals, only 36% check for updates every week. For those small businesses with a website, or that are considering one, these three quick wins will help you protect your money, data and reputation.

2019-130: Password spray attacks Alert

Aug 5, 2019 The Australian Cyber Security Centre (ACSC) is aware of a high volume of ongoing password spray attacks targeting Australian organisations.

Personal cyber security: Next steps guide Guidance

Oct 1, 2021 The second guide in the series designed to help everyday Australians understand the next level of cyber security, and how you can take action to protect yourself from ever-evolving cyber threats.

Russian Military Cyber Actors Target U.S. and Global Critical Infrastructure Advisory

Sep 6, 2024 The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) assess that cyber actors affiliated with the Russian General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center (Unit 29155) are responsible for computer network operations against global targets for the purposes of espionage, sabotage, and reputational harm since at least 2020.

Infamous Chisel Advisory

Aug 31, 2023 Malware Analysis Report.
A collection of components designed to enable remote access and exfiltrate information from Android phones.

#StopRansomware: LockBit 3.0 Ransomware Affiliates Exploit CVE 2023-4966 Citrix Bleed Vulnerability Advisory

Nov 29, 2023 This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors.

Questions for Boards to Ask About Cyber Security Publication

Dec 5, 2022 Information on the importance of cyber security for board members in protecting their organisation and shareholders.

Ransomware Playbook Advice

Oct 10, 2024 Ransomware Playbook TBA

Reports and statistics

Nov 3, 2022 Find the latest cyber security reports and statistics

Strategies to Mitigate Cyber Security Incidents Publication

Feb 1, 2017 The Australian Signals Directorate (ASD) has developed prioritised mitigation strategies to help organisations mitigate cyber security incidents caused by various cyber threats. This guidance addresses targeted cyber intrusions (i.e. those executed by advanced persistent threats such as foreign intelligence services), ransomware and external adversaries with destructive intent, malicious insiders, ‘business email compromise’, and industrial control systems.

Head ACSC Address to AISA Cyber Conference 2021 News

Mar 17, 2021 The Future of Cyber Security in Australia’ – Address by Abigail Bradshaw CSC, on 15 March 2021 Canberra Convention Centre.

Secure your social media Guidance

Jul 29, 2024 Keep your social media secure by using these tips. Learn how to protect your accounts, privacy and information.

Small business cyber security guide Publication

Jun 16, 2023 This guide includes basic security measures to help protect your business against common cyber security threats.

Secure your email Guidance

Jul 29, 2024 How to protect yourself when using email and reduce spam and malicious emails.

2021-010: ASD's ACSC Ransomware Profile - Conti Advisory

Mar 4, 2022 Conti is a ransomware variant first observed in early 2020, used by cybercriminals to conduct ransomware attacks against multiple sectors and organisations worldwide, including Australia. Conti is offered as a Ransomware-as-a-Service (RaaS), enabling affiliates to utilise it as desired, provided that a percentage of the ransom payment is shared with the Conti operators as commission. This product provides information related to Conti’s background, threat activity, and mitigation advice.

How the ASD's ACSC can help during a cyber security incident Guidance

Sep 1, 2023 Impacted Australian organisations should report early, report often and share what they can during an incident to ensure the most appropriate support from the Australian Signal’s Directorate’s Australian Cyber Security Centre (ASD's ACSC).

Malicious insiders Threat

Jun 23, 2020 Malicious insiders can be employees, former employees, contractors or business associates who have legitimate access to your systems and data, but use that access to destroy data, steal data or sabotage your systems. It does not include well-meaning staff who accidentally put your cyber security at risk or spill data.