Search

Hardening Microsoft 365, Office 2021, Office 2019 and Office 2016 Publication

Jul 24, 2023 Workstations are often targeted by malicious actors using malicious websites, emails or removable media in an attempt to extract sensitive information. Hardening applications on workstations is an important part of reducing this risk.

Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure Advisory

May 17, 2022 The cybersecurity authorities of the United States, Australia, Canada, New Zealand, and the United Kingdom are releasing this joint Cybersecurity Advisory (CSA). The intent of this joint CSA is to warn organizations that Russia’s invasion of Ukraine has altered the geopolitical balance in ways that could expose organizations both within and beyond the region to increased malicious cyber activity. This activity may occur as a response to the unprecedented economic costs imposed on Russia as well as materiel support provided by the United States and U.S. allies and partners.

2023-03: ASD's ACSC Ransomware Profile – Lockbit 3.0 Advisory

Jun 15, 2023 The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of Lockbit 3.0 which is the newest version of Lockbit ransomware. It is used by cybercriminals to conduct ransomware attacks against multiple sectors and organisations worldwide, including Australia. Once gaining access to a victim’s environment, cybercriminals use this ransomware for similar purposes as other variants such as encrypting their data, and extorting a ransom to return access to the sensitive files.

Strategies to Mitigate Cyber Security Incidents – Mitigation Details Publication

Feb 1, 2017 The Australian Signals Directorate (ASD) has developed prioritised mitigation strategies to help cyber security professionals in all organisations mitigate cyber security incidents caused by various cyber threats. This guidance addresses targeted cyber intrusions (i.e. those executed by advanced persistent threats such as foreign intelligence services), ransomware and external adversaries with destructive intent, malicious insiders, ‘business email compromise’, and industrial control systems.

#StopRansomware: BianLian Ransomware Group Advisory

May 17, 2023 The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) are releasing this joint Cybersecurity Advisory to disseminate known BianLian ransomware and data extortion group IOCs and TTPs identified through FBI and ASD's ACSC investigations as of March 2023.

Glossary

List of glossary terms used on cyber.gov.au website

Partner hub alerts

Partner hub alerts

Windows Event Logging and Forwarding Publication

Oct 6, 2021 A common theme identified by the Australian Signals Directorate (ASD) while performing investigations is that organisations have insufficient visibility of activity occurring on their workstations and servers. Good visibility of what is happening in an organisation’s environment is essential for conducting an effective investigation. It also aids cyber security incident response activities by providing critical insights into the cyber security events relating to a cyber security incident and reduces the overall cost of responding to them.

2021 Top Routinely Exploited Vulnerabilities Advisory

Apr 28, 2022 This advisory provides details on the top 15 Common Vulnerabilities and Exposures (CVEs) routinely exploited by malicious cyber actors in 2021, as well as other CVEs frequently exploited.

2021 Top Malware Strains Advisory

Aug 5, 2022 This joint Cybersecurity Advisory (CSA) was coauthored by the Cybersecurity and Infrastructure Security Agency (CISA) and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC).

2022 Top Routinely Exploited Vulnerabilities Advisory

Aug 4, 2023 This advisory provides details on the Common Vulnerabilities and Exposures (CVEs) routinely and frequently exploited by malicious cyber actors in 2022 and the associated Common Weakness Enumeration(s) (CWE).