Search

Supply chain compromise of 3CX DesktopApp Alert

Mar 31, 2023 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of a reported supply chain compromise affecting the 3CX DesktopApp, allowing malicious actors to conduct multi-stage attacks against users of the legitimate software. Australian users of affected versions of 3CX DesktopApp should immediately follow the vendor’s advice and investigate for signs of malicious activity.

Phishing Threat

Mar 19, 2023 Learn about phishing attacks and know what to do if you've been targeted.

Small Business Google Chromebook and ChromeOS Security Guide Guidance

Nov 12, 2024 This publication was developed by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) with technical input from Chrome Engineering.

OS Command Injection Vulnerability in GlobalProtect Gateway Alert

May 3, 2024 ASD’s ACSC is aware of a vulnerability (CVE-2024-3400) that enables an unauthenticated attacker to execute arbitrary code with root privileges on the firewall.

Critical vulnerabilities present in certain versions of Apple iOS, macOS and Safari Alert

Sep 14, 2021 Vulnerabilities have been identified in certain versions of Apple iOS, macOS and Safari which could allow an actor to install malware or perform other actions on a vulnerable device or computer.

Critical vulnerability present in certain versions of Apple iOS and iPadOS Alert

Oct 13, 2021 A vulnerability has been identified in certain Apple products which could allow an actor to install malware or perform other actions on a vulnerable device.

The Commonwealth Cyber Security Posture in 2020 Reports and statistics

Jun 10, 2021 The Commonwealth Cyber Security Posture Report in 2020 informs the Parliament of the status of the Commonwealth’s cyber security posture. Overall, the report found that Commonwealth entities continued to improve their cyber security in 2020. Ongoing effort is required to maintain the currency and effectiveness of cyber security measures.

Exploitation of vulnerabilities affecting Cisco firewall platforms Alert

Apr 25, 2024 This alert has been written for the IT teams of organisations and government. Entities are strongly encouraged to take immediate action to ensure affected devices are patched and investigate for potential compromise.

Critical vulnerability in ManageEngine ADSelfService Plus exploited by cyber actors Alert

Sep 24, 2021 A vulnerability exists in certain versions of ManageEngine ADSelfService Plus. A cyber actor could exploit this vulnerability to execute arbitrary code, potentially enabling the actor to take control of the vulnerable host. Affected Australian organisations should apply the available security update.

Secure Administration Publication

Oct 6, 2021 Privileged access allows administrators to perform their duties, and is often seen as the ‘keys to the kingdom’. This publication provides guidance on how to implement secure administration techniques as part of the management of privileged access.

2023 top routinely exploited vulnerabilities Advisory

Nov 13, 2024 This advisory provides details, collected and compiled by the authoring agencies, on the Common Vulnerabilities and Exposures (CVEs) routinely and frequently exploited by malicious cyber actors in 2023 and their associated Common Weakness Enumerations (CWEs). Malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks in 2023 compared to 2022, allowing them to conduct operations against high priority targets.
The authoring agencies strongly encourage vendors, designers, developers, and end-user organizations to implement the following recommendations, and those found within the Mitigations section of this advisory, to reduce the risk of compromise by malicious cyber actors.

Shifting the Balance of Cybersecurity Risk Publication

Oct 17, 2023 The Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Federal Bureau of Investigation (FBI), the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and the following international partners provide the recommendations in this guide as a roadmap for technology manufacturers to ensure security of their products.

Scams Threat

Apr 21, 2023 Online scams cost Australians millions of dollars each year and anyone can be targeted. Cybercriminals often use familiar brands and logos to make themselves seem reliable.

Essential Eight Maturity Model FAQ Publication

Oct 28, 2024 This publication provides answers to frequency asked questions on how to implement the Essential Eight.

Cyber Incident Management Arrangements for Australian Governments Publication

Sep 18, 2023 The CIMA provides Australian governments with guidance on how they will collaborate in response to, and reduce the harm associated with, national cyber incidents.

Windows Event Logging and Forwarding Publication

Oct 6, 2021 A common theme identified by the Australian Signals Directorate (ASD) while performing investigations is that organisations have insufficient visibility of activity occurring on their workstations and servers. Good visibility of what is happening in an organisation’s environment is essential for conducting an effective investigation. It also aids cyber security incident response activities by providing critical insights into the cyber security events relating to a cyber security incident and reduces the overall cost of responding to them.

Small business

Jun 15, 2023 Basic steps to protect your business and staff from cyber threats. Our guide has information and resources to help you and your staff prepare for cyber attacks.

Home

Jul 19, 2022 Welcome to the Australian Cyber Security Center website - cyber.gov.au

Security tips for travelling Guidance

Jul 29, 2024 Learn how to stay secure while travelling with personal devices.

Cyber Security Incident Response Planning: Executive Guidance Publication

Apr 11, 2024 The Australian Signals Directorate (ASD) is responsible for monitoring and responding to cyber threats targeting Australian interests. Reporting cyber security incidents to ASD ensures that timely assistance can be provided, if required. This may be in the form of investigations or remediation advice.

Small Business Cyber Security

Jul 18, 2023 How to protect your small business from common cyber security threats.

Small Business Cloud Security Guides: Executive Overview Publication

Dec 16, 2022 In recognition of the increasing prevalence of cloud computing, the Australian Cyber Security Centre (ACSC) has published the Small Business Cloud Security Guides. These guides are designed to provide protection against cyber incidents while remaining accessible to organisations which may not have the resources and expertise to implement a more sophisticated strategy.

Active exploitation of vulnerable Sitecore Experience Platform content management systems Alert

Nov 5, 2021 There is active exploitation of a vulnerability occurring in certain versions of Sitecore Experience Platform systems. Affected Australian organisation should apply the available security update.

Critical vulnerability present in certain versions of Microsoft Excel Alert

Nov 11, 2021 Microsoft has identified active exploitation of a vulnerability in Microsoft Excel. Affected Australian organisations should apply the available security update as soon as possible.

Microsoft Office Outlook Remote Code Execution Vulnerability Alert

Feb 18, 2024 ASD’s ACSC is aware of a vulnerability in Microsoft Office Outlook (CVE-2024-21413).
Users of Microsoft Office Outlook are strongly advised to follow the mitigation advice provided by Microsoft if they are vulnerable.

Remote code execution vulnerability present in certain versions of Palo Alto firewalls utilising the GlobalProtect VPN component Alert

Nov 11, 2021 A vulnerability has been identified in certain versions of Palo Alto firewalls utilising the GlobalProtect VPN component. Affected Australian organisations should apply the available update as soon as possible.

Remote code execution vulnerability present in the MSHTML component of Microsoft Windows Alert

Sep 14, 2021 A vulnerability exists in a component of Microsoft Windows. A malicious cyber actor could exploit this vulnerability to execute arbitrary code, potentially enabling the actor to take control of the vulnerable host. At this current time there is no patch available, affected Australian customers should apply the Microsoft recommended workarounds.

Report and recover from account compromise Guidance

Nov 10, 2023 A guide to recovering your account and protecting you against future attacks.

Vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway products Alert

Jan 18, 2024 ASD’s ACSC is aware of multiple vulnerabilities (CVE-2023-6548 and CVE-2023-6549) in Citrix NetScaler products (NetScaler ADC and NetScaler Gateway). Organisations are strongly encouraged to take immediate action to ensure affected instances are patched.

Who we are

Oct 25, 2022 Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) leads the Australian Government’s efforts to improve cyber security. Our role is to help make Australia the most secure place to connect online.