Search

You can’t outsource risk: Advice for using cloud services   News

Oct 20, 2025 - Discover your shared responsibilities when using a cloud service provider.

Technical example: Application control   Publication

Dec 16, 2022 - Application control restricts the ability of an application to run or install on a device. Application control makes it harder for users to intentionally or unintentionally install unwanted or malicious software.

Understand and invest in modern defensible architecture now   News

Oct 23, 2025 - We have released a new publication series in collaboration with our international partners on modern defensible architecture, providing organisations with a clear framework to begin investment and implementation.

Australian Signals Directorate releases the Annual Cyber Threat Report 2024-25   News

Oct 14, 2025 - The Annual Cyber Threat Report 2024-25 provides an overview of the key cyber threats impacting Australia, how ASD's ACSC is responding and cyber security advice for Australian individuals, organisations and government to protect themselves online.

Multiple high-severity vulnerabilities in F5 products and incident impacting F5   Alert

Oct 16, 2025 - F5 has released multiple security advisories affecting BIG-IP, BIG-IP Next, F5OS, and Silverline products. The most critical issues include vulnerabilities in SCP/SFTP, SSL/TLS, HTTP/2, and TMM components, with several rated high (CVSS up to 8.8). Exploitation could allow remote code execution, data exposure, or denial of service.

Take action this Cyber Security Awareness Month   News

Oct 1, 2025 - Don’t get caught missing in action this Cyber Security Awareness Month.

Join the Cyber Threat Intelligence Sharing service through Sentinel or Splunk Enterprise Security   News

Oct 2, 2025 - The Australian Signals Directorate’s (ASD’s) Cyber Threat Intelligence Sharing (CTIS) is a two-way sharing platform that enables government and industry partners to receive and share information about malicious cyber activity at machine speed.

Stay ahead of the quantum threat with post-quantum cryptography   News

Sep 22, 2025 - Get updated advice to help your organisation plan and prepare for post-quantum cryptography.

Ransomware   Threat

Read through the following case studies and learn from other Australians about how ransomware has affected them.

Ongoing active exploitation of SonicWall SSL VPNs in Australia (CVE-2024-40766)   Alert

Sep 10, 2025 - The Australian Signals Directorate’s (ASD’s) Australian Cyber Security Centre (ACSC) is aware of ongoing active exploitation of a critical vulnerability in SonicWall SSL VPNs.

New advisory – PRC state-sponsored actors compromise networks worldwide to feed global espionage system   News

Aug 28, 2025 - Don’t feed their global espionage systems – read the full advisory for vital insights on threat hunting, indicators of compromise, and mitigation strategies to help your organisation safeguard your networks and assets.

Guidelines for evaluated products   Advice

Dec 4, 2025 - This chapter of the Information security manual (ISM) provides guidance on evaluated products.

Business Continuity in a Box   Guidance

Aug 21, 2024 - Business Continuity in a Box assists organisations to swiftly and securely stand up critical business functions during or following a cybersecurity incident that has affected the availability or trust of existing systems.

Multiple vulnerabilities affecting NetScaler ADC and NetScaler Gateway devices   Alert

Aug 27, 2025 - The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) is aware of multiple vulnerabilities (CVE-2025-7775, CVE-2025-7776 & CVE-2025-8424) affecting NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) products.

Vulnerability in Microsoft Office SharePoint Server products   Alert

Jul 20, 2025 - ASD’s ACSC is aware of a vulnerability (CVE-2025-53770) affecting instances of Microsoft Office SharePoint Server products. Organisations are strongly encouraged to take immediate action to mitigate and detect compromise on relevant systems.

Ongoing targeting of online code repositories   Alert

Sep 19, 2025 - The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) is aware of increased targeting of online code repositories, with threat actors employing various tactics to scan for and extract secrets, access private code bases, and modify packages to infect users.

The ASD’s ACSC does not have information to indicate that a specific industry or sector is being targeted, with this advisory providing general awareness of an observed increase in activity.

Multiple vulnerabilities affecting Cisco ASA 5500-X Series devices   Alert

Sep 26, 2025 - The Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) is aware of multiple vulnerabilities impacting Cisco Secure Firewall Adaptive Security Appliance (ASA) 5500-X Series models that are running Cisco ASA Software or Cisco Secure Firewall Threat Defense (FTD) Software.

Cisco reports active exploitation of these vulnerabilities globally. ASD’s ACSC has also observed targeting in Australia.

Become an ASD partner   Hub item

Register your interest in the Australian Signals Directorate’s Cyber Security Partnership Program and provide information about yourself and your organisation.

New guidance for small businesses to protect your devices and accounts   News

Jul 9, 2025 - Follow a list of step-by-step actions to help protect your Apple, Google and Microsoft devices and accounts.

New joint advice on artificial intelligence data security   News

May 23, 2025 - Learn about significant data security risks and best practices for securing data throughout the artificial intelligence (AI) system lifecycle.