Social engineering
Social engineering is a significant threat to individuals and organisations, enabling malicious actors to compromise accounts, devices, systems or sensitive information.
Social engineering Read More »
May 2025
New advice on implementing SIEM/SOAR platforms in your organisation
ASD has published a publication series about Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms in collaboration with our international partners.
New advice on implementing SIEM/SOAR platforms in your organisation Read More »
Implementing SIEM and SOAR platforms: Executive guidance
This publication is one of three in a suite of guidance on SIEM and SOAR platforms. It is primarily intended for executives but can be used by any organisation that is considering whether and how to implement a SIEM and/or SOAR.
Implementing SIEM and SOAR platforms: Executive guidance Read More »
Implementing SIEM and SOAR platforms: Practitioner guidance
This publication provides high-level guidance for cyber security practitioners on Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms.
Implementing SIEM and SOAR platforms: Practitioner guidance Read More »
Priority logs for SIEM ingestion: Practitioner guidance
This document is again intended for cybersecurity practitioners and provides detailed, technical guidance on the logs that should be prioritised for SIEM ingestion. It covers log sources including Endpoint Detection and Response tools, Windows/Linux operating systems, and Cloud and Network Devices.
Priority logs for SIEM ingestion: Practitioner guidance Read More »
New joint advice on artificial intelligence data security
Learn about significant data security risks and best practices for securing data throughout the artificial intelligence (AI) system lifecycle.
New joint advice on artificial intelligence data security Read More »
AI Data Security
This publication provides essential data security guidance for organisations that develop and/or use AI systems, including businesses, government and critical infrastructure. It highlights the importance of data security in ensuring the accuracy and integrity of AI outcomes, and presents an in-depth examination of 3 areas of data security risks in AI systems: data supply chain,
Russian GRU targeting Western logistics entities and technology companies
We have released a joint advisory outlining the tactics, techniques and procedures of a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies.
Russian GRU targeting Western logistics entities and technology companies Read More »
Russian GRU targeting Western logistics entities and technology companies
This joint cybersecurity advisory (CSA) highlights a Russian state-sponsored cyber campaign targeting Western logistics entities and technology companies.
Russian GRU targeting Western logistics entities and technology companies Read More »
Convoluted layers: An artificial intelligence primer
Rapid advances in artificial intelligence (AI), along with public releases of AI products, have prompted governments, businesses and criminals to accelerate efforts to incorporate this new technology into their operations. This advice provides definitions for some of the most commonly encountered AI terms in cybersecurity and a brief typology of cyberthreats that will arise from
Convoluted layers: An artificial intelligence primer Read More »