View all news and media releases

05 Aug 2022

ACSC and partners alert organisations to top 2021 malware strains

The top types of malicious software – or malware – seen by the Australian Cyber Security Centre and international partners through 2021 have been detailed, along with advice on how to counter them.

29 Jul 2022

Gateway Security Guidance

The ACSC has published a new Gateway Security Guidance package to help organisations securely install gateway capabilities.  

14 Jul 2022

New ACSC guidance released to help Australians avoid risks related to social media and messaging applications

ACSC has today released updated guidance to help all Australians better understand how social media and messaging apps can pose a risk to the security and privacy of individuals and organisations.

28 Jun 2022

ACSC has launched a new campaign on Business Email Compromise

With the end of the financial year ushering in tax season, Australians are urged to strengthen their email security and be alert to criminals trying to fool them into making false payments or giving up details that could make them an easy target for cyber crime.

12 May 2022

Joint advisory released for Managed Service Providers and Customers to mitigate cybersecurity risks

The Australian Cyber Security Centre (ACSC) has today joined with international cyber security agency partners, to warn Managed Service Providers (MSP) of pressing cyber risks and provide guidance on suitable mitigations for them and their customers.

11 May 2022

Joint statement - attribution to Russia for malicious cyber activity against European networks

Australia and international partners shine a light on Russia’s ongoing unacceptable activity in cyberspace.

28 Apr 2022

Joint cybersecurity advisory released on 2021's top routinely exploited vulnerabilities

Malicious cyber actors are aggressively targeting newly-disclosed and dated critical software vulnerabilities against a broad range of targets, including public and private sector organisations worldwide.

22 Apr 2022

CISA, FBI, NSA, and international partners issue advisory on demonstrated threats and capabilities of Russian state-sponsored and cyber criminal actors

Since Russia’s invasion of Ukraine in February, the risk of malicious cyber operations by Russian state-sponsored and criminal cyber actors has increased. The threats to critical infrastructure could impact organisations both within and beyond Ukraine.

11 Apr 2022

Mandatory Incident Reporting

New measures to enhance the cyber security of Australia’s critical infrastructure

23 Mar 2022

Australian Signals Directorate unveils new facility

The Australian Signals Directorate (ASD) has unveiled a new world-class cyber and foreign intelligence facility, as the agency prepares to mark 75 years defending Australia from global threats.

23 Mar 2022

Be Ready - auDA Domain Name Changes

The new domain name category could leave your business or organisation open to fraudulent cyber activity, such as business email compromise.

11 Feb 2022

Cyber resources for small businesses

Last December, the Council of Small Business Organisations Australia (COSBOA) co-hosted an Act Now, Stay Secure breakfast at the National Portrait Gallery, along with the ACSC and the Department of Home Affairs.

10 Feb 2022

Australia joins US and UK to warn of 2021 Ransomware trends

Ransomware continues to be a global threat, and cybercriminals using ransomware pose a significant risk to Australian organisations and households.

04 Feb 2022

Back to school with cyber secure devices

As children return to school, Australian parents are urged to make devices like mobile phones and laptop computers more cyber secure and to teach their children about cyber security, with 2022 set to be another year of hybrid learning for most families.

23 Dec 2021

ACSC and international partners encourage action to mitigate risks for Log4j vulnerability

ACSC and cyber security agency partners have issued a joint statement and advisory on the Log4j vulnerability providing technical details, mitigations and resources to help address the critical software flaw.

21 Dec 2021

Cybercriminals scanning Australian entities for serious cyber vulnerability

Australians must urgently patch applications and software products as malicious cyber adversaries conduct thousands of scans in search of the vulnerability related to the critical Log4j software flaw.

16 Dec 2021

JCSC virtual presentations on Log4j2 vulnerability – Friday 17 December

A critical alert and advisory has been published on the Log4j2 vulnerability. On Friday 17 December 2021, ACSC’s Joint Cyber Security Centres (JCSCs) will facilitate a series of virtual awareness and advice sessions about this vulnerability. Australians are urged to act now to secure their computer systems against this critical software vulnerability.

15 Dec 2021

Australians urged to act on cyber alert

The Australian Cyber Security Centre (ACSC) issued an alert on a vulnerability in the Apache Log4j software library that exposed systems to potential cyberattack.

29 Nov 2021

Head of ACSC talks cyber security with Natarsha Belling in podcast special

Ms Abigail Bradshaw, head of the Australian Cyber Security Centre (ACSC), recently sat down with journalist Natarsha Belling to discuss the common cyber threats affecting Australians today.

25 Nov 2021

The ACSC On-Call 24/7

All Australians now have greater access to cyber security help and advice through the Australian Cyber Security Centre’s enhanced national Cyber Security Hotline - 1300 CYBER1.

03 Nov 2021

Online shoppers the target of Christmas cyber grinches

In the lead-up to Black Friday and festive season sales, Australians must be alert to the cybercriminals seeking to steal your Christmas joy and your money.

01 Nov 2021

Joint statement - Digital Transformation Agency and Australian Signals Directorate - Secure Internet Gateways update

The Australian Government is further strengthening the ICT systems of Government entities by enhancing its Secure Internet Gateway (SIG) policy and through the Cyber Hubs initiative. The Digital Transformation Agency (DTA) is working on these initiatives with the Australian Signals Directorate’s (ASD) Australian Cyber Security Centre (ACSC).

05 Oct 2021

Cyber Security Awareness Month 2021

October is Cyber Security Awareness Month.

01 Oct 2021

Microsoft introduces Exchange Emergency Mitigation service

Microsoft has launched a new optional protection for Microsoft Exchange servers.

16 Sep 2021

ACSC Annual Cyber Threat report 2020-21

The Assistant Minister for Defence, The Hon Andrew Hastie MP, released the Australian Cyber Security Centre’s Annual Cyber Threat Report 2020-21.

31 Aug 2021

ACSC cyber security challenge

Would you like to put your cyber incident response skills to the test?

25 Aug 2021

ACSC participation in Asia Pacific Computer Emergency Response Team (APCERT) Drill

The ACSC has joined international partners in the annual Asia Pacific Computer Emergency Response Team (APCERT) Drill.

17 Aug 2021

Boost your cyber defences with backups

Backing up your data is one of the best defences against ransomware attacks conducted by the opportunistic cyber criminals who continue to threaten Australian businesses, organisations, and families.

28 Jul 2021

U.S., U.K., and Australia Issue Joint Cybersecurity Advisory

Cyber Agencies Share Top Routinely Exploited Vulnerabilities

28 Jul 2021

Joint advisory on top cyber vulnerabilities

The top 30 cyber security vulnerabilities exploited by malicious cyber actors since 2020 have been detailed in a joint advisory issued by the Australian Cyber Security Centre (ACSC) and counterpart cyber security agencies from the United States and the United Kingdom.

20 Jul 2021

Act now to defend against vicious cybercriminals

Cybercriminals are targeting Australians at an unprecedented level to steal sensitive information and money, including through business email compromise and ransomware attacks.

12 Jul 2021

Updated Essential Eight Maturity Model

Adversaries continually evolve their tradecraft to defeat preventative measures that organisations put in place.  The ACSC is committed to providing cyber security advice that is contemporary, and effective. This includes regular updates to the Essential Eight Maturity Model.

15 Jun 2021

Australia is fighting back against ransomware

Australians continue to be targeted by cybercriminals through ransomware campaigns impacting multiple sectors across our economy.

17 May 2021

Critical Infrastructure Uplift Program (CI-UP)

ACSC’s Critical Infrastructure Uplift Program (CI-UP) will help to protect Australia’s essential services from cyber threats by raising the security levels of critical infrastructure organisations.

03 May 2021

Update your devices to keep cybercriminals out

Updating the software on electronic devices is one of the easiest and most important ways all Australians can defend against cybercriminals and be protected from online threats.

31 Mar 2021

Back-up data to defend against cybercrime

On World Back-up Day, the Australian Government is urging businesses, organisations and individuals to back-up their digital information to protect themselves against compromise.

31 Mar 2021

ABC Radio interview with Head of ACSC

Abigail Bradshaw CSC, Head of Australian Cyber Security Centre, interview with Fran Kelly on ABC Radio National, 31 March 2021.

17 Mar 2021

Head ACSC Address to AISA Cyber Conference 2021

'The Future of Cyber Security in Australia’ – Address by Abigail Bradshaw CSC, on 15 March 2021 Canberra Convention Centre.

25 Feb 2021

Multi-factor authentication for stronger cyber protection

Australians are being urged to strengthen proof of identity protections to help stop cybercriminals gaining unauthorised access to online information and accounts.

23 Feb 2021

IRAP training partnership

The Australian Cyber Security Centre (ACSC) is partnering with organisations in South Australia and the ACT to deliver cyber security assessment training services for Australian business and organisations.

10 Feb 2021

Health Sector Snapshot

This Sector Snapshot is designed to enhance awareness of key cyber security threats in the health sector and advise executives and cyber security professionals within the health sector on what they can do to protect their organisation from cyber threats. This report provides a high-level overview of the cyber security environment from 1 January to 31 December 2020.

09 Feb 2021

Safer Internet Day 2021

Safer Internet Day on 9 February 2021 aims to raise awareness of emerging online issues and share strategies everyone can use for staying safe online.

19 Jan 2021

Staying secure online during back-to-school shopping

Parents are being urged to be vigilant while shopping online for school essentials this month, with back-to-school shopping opening up opportunities for cybercriminals to strike.

15 Dec 2020

Information Security Registered Assessor Program (IRAP)

The Australian Cyber Security Centre (ACSC) is further enhancing cyber security assessment and training, improving cyber skills, and creating new cyber careers for Australians through the Information Security Registered Assessor Program (IRAP).

30 Apr 2020

National cyber security exercises for Australia’s electricity industry

In November 2019, the Australian Signals Directorate’s Australian Cyber Security Centre coordinated a national cyber security exercise series in partnership with Australia’s electricity industry and government agencies.

18 Dec 2018

Cyber Incident Management Arrangements for Australian Governments

Australia’s Cyber Incident Management Arrangements (CIMA) outlines the inter-jurisdictional coordination arrangements and principles for Australian governments’ cooperation in response to national cyber incidents.