There has been a security breach. What should I do?Â
Security breaches can happen at any time, to any person or business. The effects can be devastating, often crippling productivity and exposing sensitive data.Â
There are some ways to tell if there was an attack on your systems and network:Â
-
The person or group involved in the attack have contacted you to demand a ransom. Â
-
People are receiving suspicious messages that appear to be from you or your company. Â
-
Your computer or network is slower than normal due to malware.Â
-
You notice unusual activity on your systems, network or files.Â
-
You’re getting more spam calls, emails or messages.Â
If your systems and data were compromised, contact these agencies to report it, get help, and reduce further harm.Â
You should record the key details of the incident. This includes what happened, when it happened, who contacted you, and how you responded.Â
Not sure how or why it happened? Learn more about system and network attacks.Â
ACSC ReportCyberÂ
Report cybercrimes, security incidents and abuse through ReportCyber. Your report helps to disrupt crime operations and makes Australia more secure. If your money and/or identity is at risk, also notify the relevant services below.Â
Prepare for future attacksÂ
Preparing for and Responding to Denial-of-Service Attacks
Although organisations cannot avoid being targeted by denial-of-service attacks, there are a number of measures that organisations can implement to prepare for and potentially reduce the impact if targeted. Preparing for denial-of-service attacks before they occur is by far the best strategy, it is very difficult to respond once they begin and efforts at this stage are unlikely to be effective.
Malware
If you’ve fallen victim to a malware attack, find out what to do and who to contact.
What to do if you're held to ransom
This guide has simple steps to follow if you are a victim of ransomware. The first section will teach you how to identify ransomware and stop it from spreading. The second part will help you avoid another ransomware attack.