Sorry, you need to enable JavaScript to visit this website.
Skip to main content

Multifactor authentication (MFA)

Two Factor Password

Never let a stranger remotely access your devices

May 23, 2019 - The Australian Cyber Security Centre (ACSC) regularly receives reports from businesses and members of the public about remote access scams. Most of these reports are from people whose devices have been remotely accessed by scammers pretending to be from IT companies, telecommunications companies, banks or even from the ACSC, who attempt to access people’s bank accounts, email, and social media channels, usually changing…

Using Virtual Private Networks

Apr 30, 2019 - This publication provides guidance on how to securely configure the use of Virtual Private Networks between geographically-separated office buildings (site-to-site VPNs) and in support of remote workers (remote access VPNs). .

Implementing Multi-Factor Authentication

Apr 30, 2019 - This publication provides guidance on the implementation of multi-factor authentication for high risk activities such as remote access to systems, performing privileged actions on systems and accessing important data repositories. The use of multi-factor authentication is one of the eight essential mitigation strategies from the Strategies to Mitigate Cyber Security Incidents. Implementing Multi-Factor Authentication…
Scammer calling

Scammers claiming to be from ICT service desks targeting user multi-factor authentication

Feb 1, 2019 - The Australian Cyber Security Centre (ACSC) is aware of a phone scam asking staff members of a critical infrastructure organisation to reveal their multifactor authentication credentials. The scammers seek to convince staff members to reveal their credentials by impersonating the service desk on a direct telephone call. There are many ways scammers try to get your information or money over the phone. They will usually…

Medicare & Aus Post SMS scam

Nov 29, 2018 - You may have seen news reports yesterday of an active phishing campaign via SMS, pretending to be from either Medicare or Australia Post. The messages claim that you have a rebate owed or a competition opportunity and asks you to click through to a website and provide your personal details. The ACSC recommends that you do not click on any links that you receive via unsolicited text messages or emails, particularly where…

A wave of fake social media accounts

Sep 7, 2018 - We use social media daily as an active communication tool, connecting us with millions of users around the globe. Social media has become increasingly popular and accessible which has created a new domain for businesses, government agencies and industry bodies to actively engage with their customer-base. . Not all smooth sailing Recently, the Australian Cyber Security Centre (ACSC) discovered…

Fed up with Phishing?

Jul 1, 2018 - Would you 'click here' and enter your bank account or credit card numbers, passwords or birthdate because you received an email or text that looks like it's from a bank or government department? If you answered 'yes', there's no need to feel ashamed. Cyber criminals are tricking more and more of us into sharing our most sensitive information. It's the most common type of scam reported in Australia, according to the…
Feature - passwords

Understanding passwords

Jul 1, 2018 - Passwords are the first line of defence to protect yourself from cyber criminals. But if you don't choose good passwords they can easily become the weakest link in protecting your personal information online. As users, we are becoming overloaded with lots of passwords to remember. At the same time improved cracking methods mean that we need to use more complex passwords to have confidence in our security…
Mitigating security incidents

How to mitigate cyber security incidents

Jul 1, 2018 - Today, there are hundreds, if not thousands, of cyber security strategies published that tailor to all sorts of infrastructures, market categories and cyber threats. Knowing which strategies apply to your organisation and where to start cyber resilience activities can be an overwhelming task. To address this issue, we have compiled a list of mitigation strategies that organisations can use as starting points to improve…

How do I create strong passwords?

Jul 1, 2018 - We have so many online accounts now and it's hard to keep track of all our passwords! Many of us still use the same password for multiple accounts. The problem is that if a cybercriminal gets into one of your accounts, it can give them access to your other accounts. Always use a strong password that's easy for you to remember but hard for others to guess. To avoid running out of ideas for new passwords, consider using a…