Malware is commonly used by malicious cyber actors, particularly cybercriminals, to compromise and gain access to devices and networks. These actors can then deliver ransomware (often resulting in financial losses and the disruption to critical services) or steal other personal and financial information. The ACSC urges all Australian organisations to read the joint advisory to learn about the most common malware and get guidance on how to implement the mitigations including: Patching – or ‘updating’ – all systems, especially known exploited vulnerabilities. Implementing multi-factor authentication (MFA). Secure Remote Desktop Protocol (RDP) and other risky services. Regularly back up data, and Promote cyber security awareness and training about social engineering and phishing All Australians are urged to report cybercrime and cyber incidents to ReportCyber, or call the 24/7 cyber security hotline 1300 CYBER1 (1300 292 371). Australian businesses and organisations are encouraged to join the ACSC Partnership Program to receive timely cyber alerts, advice, and engagement opportunities to help boost their cyber resilience.