Individuals & families Small & medium businesses Large organisations & infrastructure Government

Protect yourself online ACSC's StaySmartOnline program Be alerted to new threats AlertService Australian Government Information Security Manual (ISM)

About the ACSC

The Australian Cyber Security Centre (ACSC) is based within the Australian Signals Directorate (ASD). We provide advice and information about how to protect you, your family and your business online.

The ACSC’s cyber security mission is supported by ASD’s wider organisation, whose role is to provide foreign signals intelligence and who have a long history of cyber security excellence. We lead the Australian Government’s efforts to improve cyber security. Our role is to help make Australia the most secure place to connect online.

For further information read more about the ACSC.

Information for

Become an ACSC Partner

The ACSC Partnership Program enables a wide range of organisations to engage with the ACSC and fellow partners, drawing on collective understanding, experience, skills and capability to lift cyber resilience across the Australian economy.

Ransomware in Australia
Woman on phone

The Australian Signals Directorate’s (ASD) Australian Cyber Security Centre (ACSC) has observed an increase in the number of ransomware incidents affecting Australian organisations and individuals.

Read more
COVID-19 cyber security advice
casar

The Australian Cyber Security Centre (ACSC) has published advice on COVID-19 themed malicious cyber activity. Our guidance will help you protect your systems, data and personal information during the COVID-19 pandemic. We will continue to mitigate and disrupt these COVID-19 related scams and we encourage Australians to remain vigilant and maintain strong cyber security practices during this time.

Read more
Copy-paste compromises
Illuminated circuit board

The Australian Government is aware of, and responding to, a sustained targeting of Australian governments and companies by a sophisticated state-based actor. The title ‘Copy-paste compromises’ is derived from the actor’s heavy use of tools copied almost identically from open source.

Read more
Netlogon elevation of privilege vulnerability (CVE-2020-1472)
Worried man staring at laptop

The ACSC is aware of a recently disclosed critical vulnerability in Microsoft Active Directory Domain Controller systems that allows unauthenticated attackers to trivially access administrative credentials.

Read more
Active exploitation of vulnerable MobileIron products
Two men looking at a computer screen

The ACSC is aware of active exploitation of vulnerabilities in multiple MobileIron products by malicious cyber actors, including sophisticated state-based actors.

Read more
Alerts homepage image
News homepage image

ALERTS

View all
Alerts homepage image
HIGH -
2019-131a: Emotet malware campaign

The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has observed an ongoing and widespread campaign of malicious emails designed to spread Emotet across a variety of sectors in the Australian economy, including critical infrastructure providers and government agencies.

HIGH -
Netlogon elevation of privilege vulnerability (CVE-2020-1472)

The ACSC is aware of a recently disclosed critical vulnerability in Microsoft Active Directory Domain Controller systems that allows unauthenticated attackers to trivially access administrative credentials.

HIGH -
Active exploitation of vulnerable MobileIron products

The ACSC is aware of active exploitation of vulnerabilities in multiple MobileIron products by malicious cyber actors, including sophisticated state-based actors.

HIGH -
Copy-paste compromises

The Australian Government is aware of, and responding to, a sustained targeting of Australian governments and companies by a sophisticated state-based actor. The title ‘Copy-paste compromises’ is derived from the actor’s heavy use of tools copied almost identically from open source.

HIGH -
Phone scams impersonating Australian businesses and government agencies

Cybercriminals are spoofing Australian mobile numbers and pretending to be from an Australian Government agency, delivery company or business, manipulating the individual to gain access to their device.

NEWS & MEDIA

View all
News homepage image
Top tips to avoid ticket scammers online

Follow our tips for buying tickets securely online.

Now open - ASD 2020 Cyber Security Survey for Commonwealth entities

ASD’s annual cyber security survey is now open. Your participation in the survey assists ASD in ensuring our cyber security advice and services meet your needs; and improve cyber resilience across the Commonwealth.

New pilot program to block cybercriminals impersonating Services Australia

Telstra, in conjunction with the Australian Cyber Security Centre (ACSC) and Services Australia, is boosting Australia’s cyber resilience through the launch of a new security measure to block malicious text messages.

Don't abandon your internet domain name to cybercriminals

Domain names are your internet mail address and your online business identity. Don’t abandon your domain name to cybercriminals through administrative oversight. Allowing corporate domain names to expire puts businesses at risk, potentially exposing clients’ personal and confidential information, client-legal privileged information and financial details.

New ACSC report details cyber threats across Australia

The inaugural ACSC Annual Cyber Threat Report has been developed with our law enforcement partners, the Australian Federal Police and the Australian Criminal Intelligence Commission, to provide important information about emerging cyber threats impacting the Australian economy.

Tweets by @CyberGovAu

Stay Smart Online Facebook

Stay Smart Online

Tweets by @ASDGovAu

Easy steps to secure your online information Individuals and families
Small Business Cyber Security Guide Small and medium businesses
Australian Government Information Security Manual Large organisations and infrastructure Government
Protect yourself online ACSC's StaySmartOnline program Be alerted to new threats AlertService Report a cybercrime or cyber security incident