Advisory 2020-009: Advanced Persistent Threat (APT) actors targeting Australian health sector organisations and COVID-19 essential services
May 8, 2020 - The ACSC is aware that Advanced Persistent Threat (APT) actors are actively targeting health sector organisations and medical research facilities. APT groups may be seeking information and intellectual property relating to vaccine development, treatments, research and responses to the outbreak as this information is now of higher value and priority globally.
Advisory 2020-003: Mailto ransomware incidents
Feb 6, 2020 - Overview The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) is aware of recent ransomware incidents involving a ransomware tool known as ‘Mailto’ or ‘Kazakavkovkiz’. Mailto belongs to the KoKo ransomware family. At this time, the ACSC is unaware whether these incidents are indicative of a broader campaign. Details Currently, the ACSC has limited information about the initial intrusion vector for Mailto infections.
Follow our essential steps to protect your business
May 15, 2019 - This week is national Privacy Awareness Week, an annual initiative of the Office of the Australian Information Commissioner (OAIC) that raises awareness of privacy issues and the importance of protecting personal information. Malicious or criminal attacks are deliberately crafted to exploit known vulnerabilities for financial or other gain. Many cyber incidents exploit vulnerabilities involving a human factor, such as unwittingly clicking on a malicious link and disclosing passwords.
Norwegian aluminium giant hit by ransomware
Mar 21, 2019 - Norsk Hydro, a Norwegian aluminium and renewable energy company was subject to a Ransomware attack on Tuesday, 19 March 2019. The company confirmed the attack in a statement on their website
Fake CIA emails requesting Bitcoin or arrest
Mar 20, 2019 - The Australian Cyber Security Centre (ACSC) is aware of malicious emails claiming to be from the Central Intelligence Agency (CIA) that are being received by Australians. The emails align with the ‘sextortion’ campaign being observed globally. The criminals inform recipients that due to their involvement in illegal material, the recipient’s personal information such as; addresses, contact information and information relating to their relative/s are contained in a case file. The recipient is advised they can avoid arrest by paying a $10,000 USD in bitcoin.Bomb threat email scam targeting Australians
Dec 14, 2018 - The Australian Cyber Security Centre (ACSC) is aware of bomb threat emails being received by Australians. The emails claim an explosive device has been hidden in the recipient’s premises, and will be detonated unless a ransom is paid in bitcoin. If you receive this email:Attribution of a pattern of malicious cyber activity to Russia
Oct 4, 2018 - The Australian Government has joined international partners to condemn a pattern of malicious cyber activity by Russia targeting political, business, media and sporting institutions worldwide. The Prime Minister, the Hon Scott Morrison MP and the Foreign Affairs Minister, Senator the Hon Marise Payne have made a joint statement condemning these actions.
Ransomware
Aug 13, 2018 - Ransomware is a type of malware that denies access to files or computer systems until a ransom is paid. Ransomware can get onto your device in the same way as other malware or a virus, for example by visiting unsafe or suspicious websites, opening emails or files from someone you don't know, clicking on 'malicious' links in social media and peer-to-peer networks.Ransomware continues to target Australians
Jul 1, 2018 - The Australian Cyber Security Centre (ACSC) is asking Australians to remain vigilant of ransomware and the damage it can cause. The Centre is urging all Australians, including businesses owners and operators to patch their systems. "Ransomware continues to be one of the greatest cyber security threats to us all. And due to its non-discriminatory nature, if your network is unprotected you may fall victim" said head of the Australian Cyber Security Centre Alastair MacGibbon.
Common threat types
Jul 1, 2018 - The cyber threat to Australian individuals and organisations is undeniable, unrelenting and continues to grow. You could be a target even if you don't think the information held on your networks is valuable, or that your business would be of interest to cyber adversaries. Many organisations are at risk purely because they are vulnerable through unpatched software or unaware staff members. Common threats impacting Australians include: