Skip to main content

The global hack of ICT managed service providers (MSPs) has affected businesses across Australia and the world.

MSPs manage IT services and infrastructure for businesses of all sizes, and access their customers’ systems remotely, making them attractive targets for state actors and cybercriminals.

If you use the services of an MSP, the global hack means your business may have been compromised, leaving your intellectual property and customer data, among other critical information, vulnerable.

It’s important to understand now what effect if any the global MSP hack has had on your service provider, and you.

Using the ACSC’s guidance for customers of MSPs is a starting point to understand these businesses’ cyber security maturity - how well equipped providers are to protect their customers’ systems and data.

Guidance for customers of MSPs

Sophisticated cyber adversaries continue to target and compromise MSPs and through them, their customers.

It’s critical that customers of MSPs scrutinise the cyber security measures contracted MSPs have in place to combat the threat.

The ACSC has prepared a range of guidance including resources for MSPs and customers of MSPs, in response to the global hack, including How to manage your network security when engaging a Managed Service Provider.

Essential Eight strategies to mitigate cyber security incidents

Cybercriminals will attempt to take advantage of anyone and have the potential to cause irreparable damage to your business. Stringent cyber security protections offer the best chance to protect your business against cybercriminals.

While no single mitigation strategy is guaranteed to prevent cyber security incidents, implementing the ACSC’s Essential Eight provides baseline protection, for any business.

Need more help?

The ACSC’s Joint Cyber Security Centre (JCSC) program provides a space where businesses can share information with both government and industry. It brings together businesses and the research community along with state, territory and Australian Government agencies in an open and cooperative environment for a better understanding of the cyber security environment.

JCSCs are located across Australia and are providing support to MSPs and customers of MSPs in the wake of the global MSP hack.

Further assistance and advice on the global MSP, the ACSC’s response and assistance, available through the JCSC program, is available at, or by contacting the ACSC via 1300 CYBER1 (1300 292 371) or

Read more about the JCSC program