Skip to main content
Report a cybercrime, cyber security incident or vulnerability.
Report
Report

Contact us

Portal login

  • About us

    About us

    Learn about who we are and what we do.

    About us
    • About the ACSC
      • Who we are
      • Alerts and advisories
      • News and media
      • Reports and statistics
      • Contact us
  • Learn the basics

    Learn the basics

    Interactive tools and advice to boost your online safety.

    Learn cyber security Sign up for alerts
    • Explore the basics
      • Recognise and report scams
      • Set secure passphrases
      • Set up and perform regular backups
      • Turn on multi-factor authentication
      • Update your devices
      • Watch out for threats
      • Small business
      • Seniors
    • View resources
      • Cyber security campaign resources
      • Cyber Security Awareness Month
      • Glossary
      • Quiz library
      • Resources library
      • Translated information
  • Protect yourself

    Protect yourself

    Advice and information about how to protect yourself online.

    Protect yourself Easy steps to secure yourself online Sign up for alerts
    • Securing your accounts
      • Passphrases
      • Multi-factor authentication
    • Securing your devices
      • How to secure your device
      • How to backup your files and devices
      • How to update your device and software
    • Securing your email
      • Securing your email
    • Staying secure online
      • Connecting with others online
      • Protecting your family
      • Protect yourself from scams
      • Online shopping
      • Connecting to public Wi-Fi and hotspots
      • Secure your Wi-Fi and router
    • Resources to protect yourself
      • Personal security guides
  • Threats

    Threats

    Common online security risks and advice on what you can do to protect yourself.

    Threats Report a cybercrime Sign up for alerts
    • Types of threats
      • Business email compromise
      • Data breaches
      • Hacking
      • Identity theft
      • Malware
      • Ransomware
      • Scams
      • System and network attacks
  • Report and recover

    Report and recover

    Respond to cyber threats and take steps to protect yourself from further harm.

    Report and recover Make a report Sign up for alerts
    • Report
      • Report a cybercrime, incident or vulnerability
      • Helping you through a cyber security incident
      • Have you been hacked?
      • Cybercrime - getting help
    • Recover from
      • Business email compromise
      • Data breaches
      • Hacking
      • Identity theft
      • Malware
      • Ransomware
      • Scams
      • System and network attacks
  • Resources for Business and Government

    Resources for business and government

    Resources for business and government agencies on cyber security.

    Resources for business and government Become an ACSC partner Alerts and advisories Exercise in a Box
    • Essential cyber security
      • Essential Eight
      • Information Security Manual (ISM)
      • Protecting your business and employees
      • Publications
      • Small business cyber security
      • Strategies to Mitigate Cyber Security Incidents
    • Maintaining devices and systems
      • Cloud security guidance
      • Critical infrastructure
      • Outsourcing and procurement
      • Remote working and secure mobility
      • System hardening and administration
    • Governance and user education
      • Governance
      • User education
    • Assessment and evaluation programs
      • Australian Information Security Evaluation Program (AISEP)
      • Critical Infrastructure Uplift Program (CI-UP)
      • Emanation Security Program
      • High Assurance Evaluation Program
      • Infosec Registered Assessors Program (IRAP)
      • Essential Eight Assessment Course
  • Contact us
  • Report a cybercrime or cyber security incident
  • Portal login
Australian Cyber
Security Hotline
1300 CYBER1 (1300 292 371)

Breadcrumb

  1. Home
  2. Search ACSC

Search

Filter results by

Content type

  • Alerts and advisories
  • Publications

Audience

  • Individuals & families
  • Small & medium businesses
  • Organisations & Critical Infrastructure
  • Government

Displaying results for
Displaying 1 - 11 of 11 results.

Applied filters
Clear all filters

/resources-business-and-government/maintaining-devices-and-systems/system-hardening-and-administration/system-hardening/hardening-microsoft-365-office-2021-office-2019-and-office-2016

Hardening Microsoft 365, Office 2021, Office 2019 and Office 2016 Publication

Jul 24, 2023 Workstations are often targeted by malicious actors using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.

Small & medium businesses
Organisations & Critical Infrastructure
Government
/about-us/advisories/russian-state-sponsored-and-criminal-cyber-threats-critical-infrastructure

Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure Advisory

May 17, 2022 The cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom are releasing this joint Cybersecurity Advisory (CSA). The intent of this joint CSA is to warn organizations that Russia’s invasion of Ukraine has altered the geopolitical balance in ways that could expose organizations both within and beyond the region to increased malicious cyber activity. This activity may occur as a response to the unprecedented economic costs imposed on Russia as well as materiel support provided by the United States and U.S. allies and partners.

Organisations & Critical Infrastructure
Government
/about-us/advisories/2023-03-asdacsc-ransomware-profile-lockbit-3.0

2023-03: ASD's ACSC Ransomware Profile – Lockbit 3.0 Advisory

Jun 15, 2023 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of Lockbit 3.0 which is the newest version of Lockbit ransomware. It is used by cybercriminals to conduct ransomware attacks against multiple sectors and organisations worldwide, including Australia. Once gaining access to a victim’s environment, cybercriminals use this ransomware for similar purposes as other variants such as encrypting their data, and extorting a ransom to return access to the sensitive files.

Individuals & families
Small & medium businesses
Organisations & Critical Infrastructure
Government
/resources-business-and-government/essential-cyber-security/strategies-mitigate-cyber-security-incidents/strategies-mitigate-cyber-security-incidents-mitigation-details

Strategies to Mitigate Cyber Security Incidents – Mitigation Details Publication

Feb 1, 2017 The Australian Signals Directorate (ASD) has developed prioritised mitigation strategies to help cyber security professionals in all organisations mitigate cyber security incidents caused by various cyber threats. This guidance addresses targeted cyber intrusions (i.e. those executed by advanced persistent threats such as foreign intelligence services), ransomware and external adversaries with destructive intent, malicious insiders, ‘business email compromise’, and industrial control systems.

Small & medium businesses
Organisations & Critical Infrastructure
Government
/about-us/advisories/stopransomware-bianlian-ransomware-group

#StopRansomware: BianLian Ransomware Group Advisory

May 17, 2023 The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) are releasing this joint Cybersecurity Advisory to disseminate known BianLian ransomware and data extortion group IOCs and TTPs identified through FBI and ASD's ACSC investigations as of March 2023.

Small & medium businesses
Organisations & Critical Infrastructure
/learn-basics/view-resources/glossary

Glossary

List of glossary terms used on cyber.gov.au website

/resources-business-and-government/partner-hub/alerts

Partner hub alerts

Partner hub alerts

Small & medium businesses
Organisations & Critical Infrastructure
Government
/resources-business-and-government/maintaining-devices-and-systems/system-hardening-and-administration/system-monitoring/windows-event-logging-and-forwarding

Windows Event Logging and Forwarding Publication

Oct 6, 2021 A common theme identified by the Australian Signals Directorate (ASD) while performing investigations is that organisations have insufficient visibility of activity occurring on their workstations and servers. Good visibility of what is happening in an organisation’s environment is essential for conducting an effective investigation. It also aids cyber security incident response activities by providing critical insights into the cyber security events relating to a cyber security incident and reduces the overall cost of responding to them.

Small & medium businesses
Organisations & Critical Infrastructure
Government
/about-us/advisories/2021-top-routinely-exploited-vulnerabilities

2021 Top Routinely Exploited Vulnerabilities Advisory

Apr 28, 2022 This advisory provides details on the top 15 Common Vulnerabilities and Exposures (CVEs) routinely exploited by malicious cyber actors in 2021, as well as other CVEs frequently exploited.

Organisations & Critical Infrastructure
Government
/about-us/advisories/2021-top-malware-strains

2021 Top Malware Strains Advisory

Aug 5, 2022 This joint Cybersecurity Advisory (CSA) was coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC).

Individuals & families
Small & medium businesses
Organisations & Critical Infrastructure
Government
/about-us/view-all-content/alerts-and-advisories/2022-top-routinely-exploited-vulnerabilities

2022 Top Routinely Exploited Vulnerabilities Advisory

Aug 4, 2023 This advisory provides details on the Common Vulnerabilities and Exposures (CVEs) routinely and frequently exploited by malicious cyber actors in 2022 and the associated Common Weakness Enumeration(s) (CWE).

Small & medium businesses
Organisations & Critical Infrastructure
Government

Pagination

  • Current page 1
  • Page 2
  • Next page →
  • Last page Last
Report a cyber security incident for critical infrastructure
Get alerts on new threats Alert Service
Become an ASD Partner
Report a cybercrime or cyber security incident
Acknowledgement of Country Circle
Acknowledgement of Country

We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

  • About the ASD's ACSC
  • Accessibility
  • Alerts and advisories
  • Copyright
  • News and media
  • Disclaimer
  • View all content
  • Privacy
  • Contact us
  • Glossary
  • Careers
  • Social media terms of use
Australian Cyber Security Hotline 1300 CYBER1 (1300 292 371)
Authorised by the Australian Government, Canberra