You can view all our reports and statistics from this page. Use the filters below to filter by audience type, title and summary and the sort options to sort for the most recently updated or published content.
10 Jun 2021
The Commonwealth Cyber Security Posture in 2020
The Commonwealth Cyber Security Posture in 2020 report informs the Parliament of the status of the Commonwealth’s cyber security posture. Overall, the report found that Commonwealth entities continued to improve their cyber security in 2020. Ongoing effort is required to maintain the currency and effectiveness of cyber security measures.
22 Feb 2021
2020 Health Sector Snapshot
This Sector Snapshot is designed to enhance awareness of key cyber security threats in the health sector and advise executives and cyber security professionals within the health sector on what they can do to protect their organisation from cyber threats. This report provides a high-level overview of the cyber security environment within the health sector over a twelve month period (1 January to 31 December 2020).
03 Sep 2020
ACSC Annual Cyber Threat Report, July 2019 to June 2020
This report has been jointly produced by the ACSC, the ACIC and the AFP, and is the first unclassified annual threat report since the ACSC became part of the ASD in July 2018. The report identifies and describes key cyber security threats targeting Australian systems and networks, and provides a range of examples and real-world case studies of malicious activity targeting Australian networks, between July 2019 and June 2020. It provides mitigation advice that all Australians and organisations can take to defend against these threats.
09 Apr 2020
The Commonwealth Cyber Security Posture in 2019
The Commonwealth Cyber Security Posture in 2019 report informs the Parliament of the status of the Commonwealth’s cyber security posture. Overall, the report found that Commonwealth entities continue to improve their cyber security, although additional work is required for Commonwealth entities to reach a mature and resilient cyber security posture that meets the evolving threat environment.
29 Jan 2019
Manic Menagerie Investigation Report
This report details technical findings and mitigation advice related to the extensive compromise of at least eight Australian web hosting providers investigated by the Australian Cyber Security Centre (ACSC) in May 2018.
21 Dec 2018
MSP Investigation Report
The ACSC investigation report details the theft of commercial secrets, data and information from the Australian arm of a multinational construction services company via their Managed Service Provider.
12 Oct 2018
Joint Report on Publicly Available Hacking Tools
This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the UK and USA. It highlights the use of five publicly available tools, observed in recent cyber incidents around the world.
15 Oct 2017
ACSC Threat Report 2017
This is the third Australian Cyber Security Centre (ACSC) Threat Report. It continues to reflect the experience, focus, and mandates of the ACSC’s member organisations. This report provides an insight into what the Centre has been seeing, learning, and responding to, focusing on specific areas of change or new knowledge obtained.
15 Oct 2016
ACSC Threat Report 2016
This is the second Australian Cyber Security Centre (ACSC) Threat Report. It continues to reflect the experience, focus, and mandates of the ACSC’s member organisations. This report provides an insight into what the Centre has been seeing, learning, and responding to, focusing on specific areas of change or new knowledge obtained.
01 Oct 2015
The Australian Internet Security Initiative Report
The research presented in this report examines how various AISI participants who receive compromised computer reports act on that information to help protect the integrity of their customers’ computing devices and their own communications networks.
15 Jul 2015
ACSC Threat Report 2015
This report describes the range of cyber adversaries targeting Australian networks, explains their motivations, the malicious activities they are conducting and their impact, and provides specific examples of activity targeting Australian networks during 2014. It also offers mitigation advice on how organisations can defend against these activities.
