Skip to main content

Media release

Amazon Web Services

ACSC certifies Amazon Web Services to host protected data

Jan 24, 2019 - The Australian Cyber Security Centre (ACSC) has certified Amazon Web Services (AWS) for hosting Australian Government data classified up to the PROTECTED classification level, providing assurance to Australian Government agencies that AWS complies with Australian Government security requirements. ‘Amazon Web Services joins other providers on the Certified Cloud Services List (CCSL) that meet stringent Australian Government security requirements for hosting PROTECTED data,’ said Alastair MacGibbon, Head of the ACSC.
Rackspace

ACSC adds Rackspace DHE to Certified Cloud Services List

Jan 8, 2019 - The Australian Cyber Security Centre has added the Rackspace Dedicated Hosting Environment (DHE) to the Certified Cloud Services List (CCSL) for unclassified workloads, increasing the options available to Australian Government agencies. The Rackspace DHE joins providers on the CCSL that meet stringent Australian Government security requirements for managing information storage at the minimum Australian Government security standard, Unclassified.

ACSC counters threat to web hosting providers

Dec 29, 2018 - The extensive compromise of multiple web hosting providers and mitigation measures have been detailed in a report released today by the Australian Cyber Security Centre (ACSC). The findings of the ACSC investigation, Operation Manic Menagerie, show that eight Australian web hosting providers were compromised, allowing a malicious actor access to customer websites.

National Cyber Security Adviser urges end to complacency after global theft of commercial secrets

Dec 21, 2018 - The Australian Cyber Security Centre (ACSC) is providing assistance to ICT managed service providers (MSPs) in the wake of the global cyber security compromise confirmed by the Australian Government. Alastair MacGibbon, Head of the ACSC and National Cyber Security Adviser, says the incident has affected ICT providers and their customers across the globe, and it demonstrates there is no room for complacency in boardrooms around Australia when it comes to ensuring organisations have better cyber security protections in place.

ACSC adds Google Cloud Platform to CCSL

Dec 13, 2018 - The Australian Cyber Security Centre (ACSC) has added Google Cloud Platform to the Certified Cloud Services List (CCSL) for unclassified workloads, increasing the options available to Australian Government agencies. Google Cloud Platform joins 12 existing providers in the CCSL that meet stringent Australian Government security requirements for managing information storage at the minimum Australian Government security standard, known as ‘Unclassified’.

New approach to support cyber security

Dec 4, 2018 - The updated Australian Government Information Security Manual (ISM) has been released by the Australian Cyber Security Centre (ACSC). The 2018 release supports a move towards a risk-based approach that gives organisations greater flexibility to manage their cyber security based on their own unique circumstances, enabling greater innovation within Government.

Austal cyber security incident

Nov 1, 2018 - JOINT STATEMENT Department of Defence Department of Home Affairs Australian Cyber Security Centre The Australian Government is aware of the cyber security incident affecting Austal. This matter has been referred to the Australian Cyber Security Centre (ACSC) and the Australian Federal Police (AFP) for investigation.

Australia maintains a key role in international cyber security community

Oct 30, 2018 - Australia will continue its leading role in the region’s largest cyber security community with the Australian Cyber Security Centre re-elected as Chair of the Asia-Pacific Computer Emergency Response Team (APCERT) Steering Committee in Shanghai on 23 October 2018. The ACSC maintains its role working alongside regional partners on cyber capability and protections in its capacity leading Australia’s computer emergency response capability.

Joint report on publicly available hacking tools

Oct 12, 2018 - This report is a collaborative research effort by the cyber security authorities of five nations: Australia, Canada, New Zealand, the UK and USA. It highlights the use of five publicly available tools, observed in recent cyber incidents around the world. To aid the work of network defenders and system administrators, we also provide advice on limiting the effectiveness of these tools and detecting their use on a network.

Record number of competitors team up to reverse the threat

Oct 9, 2018 - Australia’s flagship national cyber security challenge, CySCA (Cyber Security Challenge Australia) is on again around Australia on 9-10 October 2018, bringing together a record number of Australian tertiary students to battle real-world cyber attacks on a purpose-built Telstra network. For the 427 students taking part, it’s a foot in the door of Australia’s cyber workforce, which like elsewhere in the world, is suffering a shortage of skilled workers at a time when cybercrime is growing.

One in four Australians hit by cybercrime - reversing the threat

Oct 7, 2018 - Cybercrime and cyber-enabled crime is harming more and more Australians every day, and it’s time to reverse the threat. ‘One in four Australians were hit by cybercrime last year – that’s over 6 million Australians. If we’re going to fight back, we need to work together,’ Alastair MacGibbon, Head of the Australian Cyber Security Centre (ACSC), said on the eve of Stay Smart Online Week 2018. This year, Stay Smart Online is launching ‘Reverse the Threat’ to encourage all Australians and businesses to take simple actions to defend against cybercrime.

Correcting the record - Certified Cloud Services List

Sep 29, 2018 - Recent media reports suggest third-party solutions built on ACSC Certified Cloud Services automatically inherit ACSC certification. This is not accurate. Any solution or service built on a certified cloud service does not automatically inherit the awarded certification of the supporting infrastructure and is not certified by the ACSC, unless it is also listed on the CCSL.

Who will be Australia’s next Boss of the SOC?

Aug 28, 2018 - The Australian Cyber Security Centre (ACSC) and Splunk are teaming up this week to host Australia’s largest ever cyber security challenge. Challenging their defensive skills, 350 cyber security analysts and engineers from industry, academia and government will test themselves using Splunk and other cyber security tools and techniques.
Data protection

PageUp data incident

Jun 18, 2018 - On Friday 1 June 2018 PageUp Limited, an online recruitment services organisation, notified their customers about a data incident in relation to the integrity of their systems proactively informing of a possible breach. PageUp self-identified suspicious activity on its network and undertook immediate actions to investigate and contain the incident. PageUp notified their corporate customers and the Australian Cyber Security Centre (ACSC) of the issue, enabling the ACSC to quickly assess the incident and support PageUp in their response. In line with the new Notifiable Data…

ACSC and AISA seal partnership deal for a secure cyber future

Jan 29, 2018 - The Australian Cyber Security Centre (ACSC) and the Australian Information Security Association (AISA), Australia’s peak body for information security professionals, have joined forces to further strengthen Australia’s cyber security posture and achieve a cyber secure nation. Together the organisations will deliver a high impact program of events in 2019, including a bigger and better Australian Cyber Conference in Melbourne 7-9 October, replacing the ACSC Conference.