Sorry, you need to enable JavaScript to visit this website.
Skip to main content

News

Feature - Password security

Get smarter with passwords

Jan 23, 2019 - Whether you’re an individual or part of an organisation, the data dump of billions of stolen passwords and email addresses is a reminder to take action to protect yourself and your information. The Australian Cyber Security Centre (ACSC) is aware that the so-called Collection #1data dump of stolen credentials has now been followed by the release on the dark web of Collections #2, #3, #4 and #5. All 5 collections add up to 1 terabyte in size with 100 billion records in total.
MSSP

Has the global MSP hack affected your business?

Jan 18, 2019 - The global hack of ICT managed service providers, or MSPs, has affected businesses across Australia and the world. MSPs manage IT services and infrastructure for businesses of all sizes, and access their customers’ systems remotely, making them attractive targets for state actors and cybercriminals. If you use the services of an MSP, the global hack means your business may have been compromised, leaving your intellectual property and customer data, among other critical information, vulnerable.
Hacking data

773M accounts affected by 'Collection #1' breach

Jan 18, 2019 - The Australian Cyber Security Centre (ACSC) is aware of a significant data breach affecting 773 million email addresses and usernames. Titled 'Collection #1', the data breach was made public by Australian cyber security expert Troy Hunt, who identified that a large number of credential lists had been distributed on a known hacking forum.
Email security

Don't get burned by email scams this Summer

Jan 14, 2019 - At this time of the year, Australia sees its fair share of extreme weather events. From savage storms to raging bushfires, these extreme weather conditions can take place unexpectedly, leaving Australians little time to consider the possibility of being the target of cybercrime. Cybercriminals will take advantage of these stressful situations, pursuing individuals and businesses when they least expect. As witnessed in the United States late last year during Hurricane Florence, cyber scammers are indiscriminate in who they choose to target and will attempt to make a profit in…
SOC

Implementing the Essential Eight for MSPs

Jan 11, 2019 - Following the global compromise of managed service providers or MSPs, the Australian Cyber Security Centre (ACSC) is calling on Australian businesses and individuals to be proactive in implementing better cyber security practices. While no single mitigation strategy is guaranteed to prevent cyber security incidents, organisations are recommended to implement eight essential mitigation strategies as a baseline. This baseline, known as the Essential Eight, makes it much harder for adversaries to compromise systems.
WhatsApp gold hoax

"Whatsapp Gold" is a hoax

Jan 9, 2019 - The Australian Cyber Security Centre (ACSC) is aware that messages are circulating on Whatsapp that attempt to lure people into using a ‘gold’ version of the app. The scam urges victims to sign up for an ‘upgrade’. After clicking on the link you would be redirected to a fake page and your phone would become infected with malware. Remember, any updates to WhatsApp usually happen automatically through the app. If you receive a request to download 'WhatsApp Gold' do not click the link. Delete it.

Phishing email scam – tender invitation

Jan 9, 2019 - The Australian Cyber Security Centre (ACSC) is aware of phishing emails allegedly from the Department of Infrastructure, Regional Development and Cities, inviting the recipient to respond to a tender invitation. This email is a scam, and the fake tender document attached contains malicious web-links that seek to steal your personal information.
Rackspace

ACSC adds Rackspace DHE to Certified Cloud Services List

Jan 8, 2019 - The Australian Cyber Security Centre has added the Rackspace Dedicated Hosting Environment (DHE) to the Certified Cloud Services List (CCSL) for unclassified workloads, increasing the options available to Australian Government agencies. The Rackspace DHE joins providers on the CCSL that meet stringent Australian Government security requirements for managing information storage at the minimum Australian Government security standard, Unclassified.

ACSC counters threat to web hosting providers

Dec 29, 2018 - The extensive compromise of multiple web hosting providers and mitigation measures have been detailed in a report released today by the Australian Cyber Security Centre (ACSC). The findings of the ACSC investigation, Operation Manic Menagerie, show that eight Australian web hosting providers were compromised, allowing a malicious actor access to customer websites.

National Cyber Security Adviser urges end to complacency after global theft of commercial secrets

Dec 21, 2018 - The Australian Cyber Security Centre (ACSC) is providing assistance to ICT managed service providers (MSPs) in the wake of the global cyber security compromise confirmed by the Australian Government. Alastair MacGibbon, Head of the ACSC and National Cyber Security Adviser, says the incident has affected ICT providers and their customers across the globe, and it demonstrates there is no room for complacency in boardrooms around Australia when it comes to ensuring organisations have better cyber security protections in place.