Search

Connecting with others online   

Jul 30, 2024 - It is easier than ever to stay in contact with people online. However, using popular online apps and tools can make you more susceptible to cybercriminals.

Remote working and secure mobility  

Apr 11, 2023 - With an increase in remote working, it has never been more important to secure the use of mobile devices.

Outsourcing and procurement  

Apr 11, 2023 - Outsourcing to external service providers can save organisations time and money. By incorporating cybersecurity into procurement considerations, organisations can benefit significantly in the long run.

Legacy IT management  

Apr 11, 2024 - This page lists publications on managing the risks posed by legacy IT.

Strategies to mitigate cyber security incidents  

Aug 30, 2023 - The Australian Signals Directorate has developed prioritised mitigation strategies to help organisations mitigate cyber security incidents caused by various cyber threats.

Cross Domain Solutions  

Dec 3, 2020 - This page lists publications on security domains and trust boundaries.

Web hardening  

Dec 2, 2020 - This page lists publications on the hardening of services that can be accessed via the World Wide Web.

Managed services  

Apr 11, 2023 - This page lists publications on the provision and use of managed services.

Guidelines for cybersecurity roles   Advice

Jul 3, 2025 - This chapter of the Information security manual (ISM) provides guidance on cybersecurity roles.

Protecting your business and employees  

Apr 11, 2023 - Cybercriminals can attack your business and employees at any time. Follow these resources to find out how to make your business and employees cyber secure.

Information security manual  

Sep 26, 2024 - The Information security manual (ISM) is a cybersecurity framework that an organisation can apply, using their risk management framework, to protect their information technology and operational technology systems, applications and data from cyberthreats.

Small business cyber security  

Jul 18, 2023 - How to protect your small business from common cyber threats.

Operational technology environments  

Oct 4, 2024 - This page lists publications on critical infrastructure and their supporting operational technology environments.

System administration  

Dec 3, 2020 - This page lists publications on securely administering systems.

New joint advice on artificial intelligence data security   News

May 23, 2025 - Learn about significant data security risks and best practices for securing data throughout the artificial intelligence (AI) system lifecycle.

Governance  

May 16, 2024 - This page lists publications on governance strategies that can be applied to improve cybersecurity within organisations.

Passphrases  

Protect your accounts from cybercriminals with a secure password or passphrase.

Essential Eight  

Nov 27, 2023 - While no set of mitigation strategies are guaranteed to protect against all cyberthreats, organisations are recommended to implement eight essential mitigation strategies from the Strategies to mitigate cybersecurity incidents  as a baseline. This baseline, known as the Essential Eight, makes it much harder for adversaries to compromise systems.

Cloud security guidance  

Jan 18, 2024 - This page lists publications on securing the use of cloud computing services.

Russian GRU targeting Western logistics entities and technology companies   News

May 22, 2025 - We have released a joint advisory outlining the tactics, techniques and procedures of a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies.

New advice on implementing SIEM/SOAR platforms in your organisation   News

May 27, 2025 - ASD has published a publication series about Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms in collaboration with our international partners.

Artificial intelligence  

Apr 12, 2024 - This page lists publications on the governance and use of artificial intelligence.

Business resources  

Apr 11, 2023 - Protecting your business from cybercriminals is vital in keeping your people and systems secure. Learn how to protect your business from cyberthreats.

Cyber supply chains  

Dec 3, 2020 - This page lists publications on cyber supply chain risk management.

Multiple Vulnerabilities In Ivanti Endpoint Manager Mobile (Ivanti EPMM)   Alert

May 14, 2025 - The Australian Signals Directorate’s (ASD) Australian Cyber Security Centre (ACSC) is aware of two vulnerabilities, one medium and one high severity, in Ivanti Endpoint Manager Mobile (EPMM). The ASD’s ACSC recommends organisations patch to the latest version of Ivanti EPMM, available through Ivanti’s download portal, and investigate whether their systems have been compromised.

System hardening and administration   

Apr 11, 2023 - It is important for all organisations to maintain the cybersecurity of their systems and data.

Guidelines for system management   Advice

Jul 3, 2025 - This chapter of the Information security manual (ISM) provides guidance on system management.

Personal cyber security guides  

Oct 1, 2021 - This page includes a series of cyber security guides that you can use to protect yourself and be cyber secure.

日本語 (Japanese)   Guidance

Apr 19, 2024 - The information and resources available are intended to increase your safety online and have been translated into Japanese.

Convoluted layers: An artificial intelligence primer   Publication

May 21, 2025 - Rapid advances in artificial intelligence (AI), along with public releases of AI products, have prompted governments, businesses and criminals to accelerate efforts to incorporate this new technology into their operations. This advice provides definitions for some of the most commonly encountered AI terms in cybersecurity and a brief typology of cyber threats that will arise from AI.