Critical Infrastructure Centre

The Critical Infrastructure Centre, located within the Department of Home Affairs, works across all levels of government, and with owners and operators to identify and manage the risks to Australia’s critical infrastructure.

Potential exploitation of Click Studio's PasswordState Software

The Australian Cyber Security Centre and Australian software company Click Studios have issued an alert concerning potential exploitation of the update process for the company’s enterprise password management software PasswordState. Please click here for more information. Please click here for more information.

Important Ivanti Pulse Connect Secure Vulnerabilities Update

The Australian Cyber Security Centre and the US Cybersecurity Infrastructure Security Agency have issued alerts concerning ongoing exploitation of vulnerabilities within certain Ivanti Pulse Connect Secure products. Please click here for more information.

Important Microsoft Exchange Vulnerabilities Update

New patches are required to protect against vulnerabilities in Microsoft Exchange 2013, 2016 and 2019. These update the March 2021 Microsoft security patches. The vulnerabilities could be used to gain access to information within Microsoft Exchange. Please click here for more information and the new updates.

Next Steps in protecting our Critical Infrastructure – design of rules

The Department of Home Affairs is working with industry to design the rules that will underpin the Critical Infrastructure Risk Management Program element of the Security Legislation Amendment (Critical Infrastructure) Bill 2020. Please click here to learn how you can be involved.