This paper examines the increasing sophistication of ransomware in Australia and the nation’s updated regulatory environment, including the Cyber Security Act 2024 and mandatory reporting of ransom payments. It outlines threat trends such as multi-attack campaigns, backup compromise, and preparedness gaps. The document provides guidance for prevention, detection, containment, and recovery, aligned with ASD Essential Eight. It stresses immutable backups, tested playbooks, strong governance, and rapid response strategies to improve resilience and meet compliance requirements.

Join for free to read