Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Australian Signals Directorate

Australian Signals Directorate Vendor Cyber Rating & Cyber Score

cyber.gov.au

The Australian Signals Directorate is an Australian Government intelligence agency responsible for foreign signals intelligence and cyber security, in support of the Australian Government and Australian Defence Force. For more information, visit asd.gov.au ASD’s Australian Cyber Security Centre (ACSC) is the Australian Government’s technical expert and voice of authority on cyber security. For cyber security advice and guidance, or to report a cybercrime, visit cyber.gov.au


ASD A.I CyberSecurity Scoring

ASD
Company Information
Website:https://www.cyber.gov.au
Employees number:97
Number of followers:97,346
NAICS:541514
Industry Type:Computer and Network Security
Homepage:cyber.gov.au
ASD Risk Score (AI oriented)
Between 550 and 599
logo
ASDComputer and Network Security
Updated:
25/05/2026
594/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
ASD Global Score (TPRM)
xxxx
logo
ASDComputer and Network Security
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

ASD
ASDVery Poor
Current Score
594Ca (VERY POOR)
01000
3 incidents
-61.5 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
600Before Incident
JUNE 2026
597Before Incident
MAY 2026
592Before Incident
APRIL 2026
591Before Incident
MARCH 2026
606Before Incident
Cyber Attack
06 Mar 2026ASD
Australian Parliament: Federal MP’s WhatsApp account hacked by state actor

WhatsApp Breach Targets Australian Parliament in Suspected State-Backed Cyberattack

585After Incident
CRITICAL-21
AUS1779719409
WhatsApp Breach Targets Australian Parliament in Suspected State-Backed Cyberattack A targeted cyberattack compromised the WhatsApp accounts of an Australian federal MP and three staffers earlier this year, prompting a temporary block on the platform’s web version within Parliament. The breach, disclosed during a Senate Estimates hearing on 20 May, occurred on 6 March when attackers used a phishing campaign to hijack personal accounts logged into both personal and Department of Parliamentary Services (DPS)-managed devices. The attackers tricked victims into sharing WhatsApp verification codes, allowing them to take control of the accounts and impersonate the users. By 9 March, DPS imposed a week-long block on WhatsApp Web across its IT network to prevent further unauthorized access, as officials could not immediately assess the scope of the compromise. The restriction was lifted on 16 March after mitigation efforts. Evidence suggests a foreign state actor was behind the attack, aligning with global trends of state-sponsored phishing campaigns targeting government officials. Similar incidents have been reported in the UK, US, Germany, and the Netherlands, with warnings issued about Russian-linked hackers exploiting messaging apps like WhatsApp and Signal. The FBI previously noted that such attacks had compromised thousands of accounts belonging to politicians, military personnel, and journalists. DPS collaborated with the Australian Signals Directorate (ASD) to investigate the breach, emphasizing the need for heightened cybersecurity measures among parliamentarians. While WhatsApp remains widely used, officials advised securing accounts and exercising caution with sensitive communications on the platform. The incident underscores the persistent threat of state-backed cyber espionage against high-value targets in government.
INCIDENT DETAILS -
TYPE
Phishing, Account Takeover
MOTIVATION
Cyber espionage, Impersonation
IMPACT
Data Compromised: WhatsApp account access, potential sensitive communicationsSystems Affected: WhatsApp Web (DPS-managed devices), personal devicesDowntime: 1 week (WhatsApp Web blocked)Operational Impact: Temporary restriction on WhatsApp Web usage in ParliamentBrand Reputation Impact: Moderate (government trust and security concerns)Identity Theft Risk: High (account impersonation)
DATA BREACH
Type Of Data Compromised: Account credentials, potential sensitive communicationsSensitivity Of Data: High (government communications)Personally Identifiable Information: Potential (account details, communications)
FEBRUARY 2026
707Before Incident
Breach
23 Feb 2026ASD
Australian Cyber Security Centre: 404 | Not found

Major Data Breach Exposes Millions of Records in Australia

605After Incident
CRITICAL-102
AUS1772015836
Cybersecurity Alert: Major Data Breach Exposes Millions of Records in Australia A significant cybersecurity incident has come to light, impacting millions of individuals in Australia. The breach, discovered earlier this month, involved unauthorized access to a database containing sensitive personal and financial information. While the exact timeline of the attack remains under investigation, initial reports suggest the intrusion may have occurred weeks before detection. The compromised data includes names, email addresses, phone numbers, and in some cases, payment details. Authorities, including the Australian Cyber Security Centre (ACSC) and affected organizations, are coordinating a response to assess the full scope of the breach. The incident has raised concerns about vulnerabilities in data storage practices, particularly among third-party service providers linked to the exposed systems. Security researchers have traced the attack to a sophisticated threat actor, though attribution remains unconfirmed. The breach underscores the growing risks of supply chain attacks, where attackers exploit weaknesses in interconnected systems to gain access to larger networks. Organizations across sectors are being urged to review their security protocols, though no specific mitigation steps have been publicly mandated. The fallout from the breach is expected to unfold in the coming weeks as affected entities notify impacted individuals and regulators. The incident serves as a reminder of the persistent threats facing digital infrastructure, with potential long-term consequences for data privacy and trust in cybersecurity measures.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Sensitive personal and financial informationIdentity Theft Risk: HighPayment Information Risk: High
DATA BREACH
NamesEmail addressesPhone numbersPayment detailsNumber Of Records Exposed: MillionsSensitivity Of Data: HighPersonally Identifiable Information: Yes
JANUARY 2026
706Before Incident
DECEMBER 2025
705Before Incident
NOVEMBER 2025
704Before Incident
OCTOBER 2025
703Before Incident
SEPTEMBER 2025
702Before Incident
AUGUST 2025
701Before Incident
JUNE 2022
752Before Incident
Ransomware
16 Jun 2022ASD
Zirco Data and Australian Textile Mills: Black Basta ransomware boss placed on EU and Interpol ‘most wanted’ lists

Black Basta Ransomware Leader Added to EU and Interpol Wanted Lists

641After Incident
CRITICAL-111
ZIRAUS1768801659
Black Basta Ransomware Leader Added to EU and Interpol Wanted Lists The alleged mastermind behind the Black Basta ransomware group, Oleg Evgenievich Nefedov, a 35-year-old Russian national, has been added to the European Union’s Most Wanted list and Interpol’s Red Notice following a joint investigation by German and Ukrainian authorities. Nefedov is accused of founding and leading the group, which has carried out at least 525 ransomware attacks since its formation in 2022. German law enforcement describes Nefedov as the group’s "managing director," responsible for selecting targets, recruiting members, overseeing ransom negotiations, and distributing profits. Authorities also link him to the now-defunct Conti ransomware group. Two additional suspects, operating in Ukraine, were identified for their role in hacking protected systems and extracting passwords to gain unauthorized access to corporate networks. Their residences were raided, resulting in the seizure of digital devices and cryptocurrency assets. Black Basta, also known as Zirco Data hackers, gained notoriety in February 2024 after breaching Zirco Data, an Australian firm, and leaking 395GB of sensitive data, including financial documents and confidentiality agreements. The attack impacted clients such as Monash Health and the Department of Home Affairs. A month later, the group exposed over 700GB of data from more than a dozen Australian companies, including Advanced Catering Systems, Australian Textile Mills, and Optimum Health Services, following an attack on a local cloud hosting provider.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain
IMPACT
Data Compromised: 395GB (Zirco Data), 700GB+ (multiple Australian companies)Systems Affected: Corporate networks, cloud hosting providersBrand Reputation Impact: HighIdentity Theft Risk: High
DATA BREACH
Financial documentsConfidentiality agreementsSensitive corporate dataSensitivity Of Data: HighData Exfiltration: YesData Encryption: Yes (ransomware encryption)Personally Identifiable Information: Likely

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for ASD ?
?
What was ASD's A.I Rankiteo Cyber Score in June 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in May 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in April 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in March 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in February 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in January 2026 ?
?
What was ASD's A.I Rankiteo Cyber Score in December 2025 ?
?
What was ASD's A.I Rankiteo Cyber Score in November 2025 ?
?
What was ASD's A.I Rankiteo Cyber Score in October 2025 ?
?
What was ASD's A.I Rankiteo Cyber Score in September 2025 ?
?
What was ASD's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on ASD's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with ASD ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view ASD's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?