May 23, 2019 - The ACSC regularly receives reports from businesses and members of the public about remote access scams. Most of these reports are from people whose devices have been remotely accessed by scammers pretending to be from IT companies, telecommunications companies, banks or even from the ACSC, who attempt to access people’s bank accounts, email, and social media channels, usually changing the passwords and locking users out of their accounts.
Apr 30, 2019 - This publication provides guidance on how to securely configure the use of Virtual Private Networks between geographically-separated office buildings (site-to-site VPNs) and in support of remote workers (remote access VPNs).
Apr 30, 2019 - This publication provides guidance on the implementation of multi-factor authentication for high risk activities such as remote access to systems, performing privileged actions on systems and accessing important data repositories. The use of multi-factor authentication is one of the eight essential mitigation strategies from the Strategies to Mitigate Cyber Security Incidents.
Feb 1, 2019 - The Australian Cyber Security Centre (ACSC) is aware of a phone scam asking staff members of a critical infrastructure organisation to reveal their multifactor authentication credentials. The scammers seek to convince staff members to reveal their credentials by impersonating the service desk on a direct telephone call.
Nov 29, 2018 - You may have seen news reports yesterday of an active phishing campaign via SMS, pretending to be from either Medicare or Australia Post. The messages claim that you have a rebate owed or a competition opportunity and asks you to click through to a website and provide your personal details.
Sep 7, 2018 - We use social media daily as an active communication tool, connecting us with millions of users around the globe. Social media has become increasingly popular and accessible which has created a new domain for businesses, government agencies and industry bodies to actively engage with their customer-base.
Jul 1, 2018 - Would you 'click here' and enter your bank account or credit card numbers, passwords or birthdate because you received an email or text that looks like it's from a bank or government department? If you answered 'yes', there's no need to feel ashamed. Cyber criminals are tricking more and more of us into sharing our most sensitive information. It's the most common type of scam reported in Australia, according to the latest data.
Jul 1, 2018 - Passwords are the first line of defence to protect yourself from cyber criminals. But if you don't choose good passwords they can easily become the weakest link in protecting your personal information online. As users, we are becoming overloaded with lots of passwords to remember. At the same time improved cracking methods mean that we need to use more complex passwords to have confidence in our security.
Jul 1, 2018 - Today, there are hundreds, if not thousands, of cyber security strategies published that tailor to all sorts of infrastructures, market categories and cyber threats. Knowing which strategies apply to your organisation and where to start cyber resilience activities can be an overwhelming task. To address this issue, we have compiled a list of mitigation strategies that organisations can use as starting points to improve their cyber resilience and technical details of these strategies. While no single mitigation strategy is guaranteed to prevent cyber security incidents, we have…
Jul 1, 2018 - We have so many online accounts now and it's hard to keep track of all our passwords! Many of us still use the same password for multiple accounts. The problem is that if a cybercriminal gets into one of your accounts, it can give them access to your other accounts.