Home | Cyber.gov.au

Protect yourself Where to get help Report and recover from identity theft Recognise and report scams

Resources Essential Eight Information Security Manual IRAP

Tools Have you been hacked? Exercise in a Box Business Continuity in a Box

Latest alerts and advisories

15 Jan 2025

FortiOS & FortiProxy - Authentication bypass in Node.js websocket module vulnerability

Fortinet has released information regarding an identified vulnerability in FortiOS version 7.0 and FortiProxy versions 7.0 and 7.2 instances. ASD’s ACSC recommends customers follow the advice…

Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government

09 Jan 2025

Alert rating: Critical

Critical vulnerabilities in Ivanti Connect Secure, Ivanti Policy Secure and Ivanti Neurons for ZTA Gateways

Ivanti has identified critical vulnerabilities affecting Ivanti Connect Secure, Ivanti Policy Secure and Ivanti Neurons for ZTA Gateways. Customers should update to available patched versions…

Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government

13 Dec 2024

Alert rating: Critical

Critical security vulnerability affecting Apache Struts2 below 6.4.0.

ASD’s ACSC is aware of a critical vulnerability impacting Apache Struts2 below 6.4.0 (CVE-2024-53677).

Audience focus: Small & medium businesses Organisations & Critical Infrastructure Government

Information and resources

Resources for individuals and families

Most people use the internet on a daily basis which can expose them to cyber attacks. Learn how to recognise the threats and protect yourself from cybercriminals.

Resources library

We have developed easy-to-follow cyber security resources to help you be more cyber secure.

Translated information

We have developed easy-to-follow cyber security information and resources to support people from non-English speaking backgrounds to be more cyber secure.

Cybercrime - getting help

If something has knocked you offline, check out the following information to help you get back up and running!

News

Browse all news

22 Jan 2025

"Bulletproof" hosting providers are not so bulletproof

Many cybercriminals rely on Bulletproof Hosting (BPH) providers to carry out their unlawful activities. Read our new publication to find out more about the role that BPH providers play in the cybercrime ecosystem.

14 Jan 2025

New Secure by Demand guidance available for operational technology owners and operators

To protect your systems from threat actors targeting your operational technology components, select products from manufacturers who are Secure-by-Design. Find out which security elements to prioritise.

What are you looking for?

About us

Learn the basics

Protect yourself

Threats

Report and recover

Resources for business and government

“Bulletproof” hosting providers

Choosing secure and verifiable technologies

Australian Signals Directorate’s Cyber Security Partnership Program

Information and resources

Resources for individuals and families

Resources library

Translated information

Cybercrime - getting help

News

"Bulletproof" hosting providers are not so bulletproof

New Secure by Demand guidance available for operational technology owners and operators

Acknowledgement of Country

“Bulletproof” hosting providers

Choosing secure and verifiable technologies

FortiOS & FortiProxy - Authentication bypass in Node.js websocket module vulnerability

Critical vulnerabilities in Ivanti Connect Secure, Ivanti Policy Secure and Ivanti Neurons for ZTA Gateways

Critical security vulnerability affecting Apache Struts2 below 6.4.0.

Australian Signals Directorate’s Cyber Security Partnership Program

Never miss a threat

Information and resources

Resources for individuals and families

Resources library

Translated information

Cybercrime - getting help

"Bulletproof" hosting providers are not so bulletproof

New Secure by Demand guidance available for operational technology owners and operators