Skip to main content

Report a cyber security incident

Regulated entities, under Part 2b of the Security of Critical Infrastructure Act 2018, may be subject to mandatory cyber incident reporting requirements, these include:

Reporting Critical Cyber Security Incidents

If you become aware that a critical cyber security incident has occurred, or is occurring, AND the incident has had, or is having, a significant impact on the availability of your asset, you must notify the Australian Cyber Security Centre (ACSC) within 12 hours after you become aware of the incident.

A significant impact is one where both the critical infrastructure asset is used in connection with the provision of essential goods and services; and the incident has materially disrupted the availability of those essential goods or services.

If you make the report verbally you must make a written record and provide the written record to cyber.gov.au/report within 84 hours of verbally notifying the ACSC.

Reporting other Cyber Security Incidents

If you become aware that a cyber security incident has occurred, or is occurring, AND the incident has had, is having, or is likely to have, a relevant impact on your asset you must notify the ACSC within 72 hours after you become aware of the incident.

A relevant impact is an impact on the integrity, reliability or confidentiality of your asset or systems.

If you make the report verbally you must make a written record and provide the written record to cyber.gov.au/report within 48 hours of verbally notifying the ACSC.

More information, including if these requirements relate to you, can be found on the Cyber and Infrastructure Security Centre’s website.

 
Notifiable data breaches. A data breach happens when personal information is accessed or disclosed without authorisation or is lost. If the Privacy Act 1988 covers your organisation or agency, you must notify affected individuals and the Office of the Australian Information Commissioner when a data breach involving personal information is likely to result in serious harm. If there is malicious cyber activity related to a data breach which you wish to report, please fill in the form below.

ATTENTION!

Fraud and Cybercrime: If you are reporting fraud or cybercrime, please refer to the ReportCyber – Cybercrime page.

Please do not fill this form on any network you believe has been compromised.
Use a separate system and contact details to complete the form.

Reason for reporting (please select all that apply)?

Contact details

Organisation details

Select your critical infrastructure sector(s)

Incident details

Is the incident ongoing?
Which of the following are being impacted?
Please select the type of incident from the following
CAPTCHA This question is for testing whether or not you are a human visitor and to prevent automated spam submissions.