CyberCX has released its annual Digital Forensics and Incident Response Year in Review Report for 2023 →

Cyber extortion attacks more than doubled in first half of 2021: new guidance from CyberCX

CyberCX has today released guidance for organisations across Australia and New Zealand on how to best protect themselves from the growing impact of ransomware and cyber extortion attacks.

Melbourne, 6 October 2021

CyberCX, the leading cyber security services provider across Australia and New Zealand, has today released a first of its kind Best Practice Guide to help organisations protect themselves from the growing problem of ransomware and cyber extortion.

The CyberCX Best Practice Guide is informed by operational experience gained from CyberCX experts responding to an increasing number of cyber extortion incidents across the region.

The CyberCX Best Practice Guide also contains industry leading cyber intelligence, revealing that CyberCX observed the frequency of cyber extortion attacks against Australian and New Zealand organisations more than double from the first quarter to the second quarter of 2021.

Further insights in the CyberCX Best Practice Guide illustrate the scale and nature of the issue, including the highest and lowest value extortion demands observed by CyberCX, and analysis of the industry sectors most frequently targeted by cyber extortion in 2021.

CyberCX CEO John Paitaridis said the CyberCX Best Practice Guide was developed in response to an urgent need for operationally-informed advice to guide organisational decision making on cyber extortion issues, “As a trusted cyber security adviser and partner for businesses, government and across all sectors of the economy, CyberCX is seeing firsthand the surge in ransomware and cyber extortion attacks – and the impact for organisations and our communities.”

“Right across Australia and New Zealand, we are hearing from boards and executives that there is a clear need for practical guidance and advice on how to best protect an organisation’s networks, critical infrastructure and digital assets from these kinds of debilitating attacks. That is why we have developed the CyberCX Best Practice Guide,” Paitaridis added.

Katherine Mansted, CyberCX Director of Cyber Intelligence and Public Policy, agreed with this sentiment, saying that the CyberCX Best Practice Guide is designed to make life more difficult for cybercriminals, “CyberCX is committed to protecting the communities we live in. We want all Australian and New Zealand organisations to have access to operationally-tested knowledge and tools which will make it harder for cybercriminals to achieve their payday.”

CyberCX Chief Strategy Officer Alastair MacGibbon said “As our intelligence indicates, every organisation, of every size, in every sector, is a potential target. There’s no hiding from this pervasive threat, but there are tangible steps every organisation can take to protect themselves and improve their resilience.”

“Too many organisations are finding out too late that they weren’t adequately protected or prepared to respond to an attack. By developing this CyberCX Best Practice Guide, we are working to lift that baseline of security across Australia and New Zealand,” MacGibbon added.

Part 1 of the Best Practice Guide is now available to download for free at:

Parts 2 and 3 of the CyberCX Best Practice Guide, which provide best practice security controls to protect your organisation and practical tips to assist victim organisations to engage with their attackers, will be available in coming weeks.


Media contact:

Jordan Newnham

[email protected]

Ready to get started?

Find out how CyberCX can help your organisation manage risk, respond to incidents and build cyber resilience.