Australian Cyber Security Centre — National Coordination

Fictional teaching environment • Incident coordination view • Do not treat as real advice
National coordination Fictional

Overview

This environment models how a national coordination centre aggregates reports, shares advisories, and liaises with law enforcement and regulators during a ransomware incident.

StatusActive monitoring
Primary incidentLotusCare Breach (Simulation)
JurisdictionsNSW (lead), national coordination
Threat typeRansomware with alleged data exfiltration
ConfidenceLow–Moderate (information contested)

Role of national coordination

  • Receive initial notifications and reports
  • Disseminate sector advisories and technical guidance
  • Coordinate with state police and federal partners as appropriate
  • Avoid speculation; communicate uncertainty clearly