On 30 May 2025, a major update to Australia’s Cyber Security Act came into effect. The new ransomware reporting rules now require organisations with an annual turnover of more than $3 million—or those classified as critical infrastructure—to report ransom payments to the Australian Signals Directorate (ASD) within 72 hours.
This landmark change signals a national shift towards greater transparency, accountability, and resilience in how Australian organisations respond to cyber crime.
What’s Changing?
If your organisation falls under the scope of the new legislation, you are now legally obligated to report any ransom payment made to hackers. This is the government’s latest move to:
- Build a clearer picture of ransomware trends
- Inform national cyber policy and threat responses
- Deter ransom payments as a convenient “quick fix”
Civil penalties may apply to those who fail to comply, making awareness and readiness essential.
Why This Matters
Ransomware remains one of the most disruptive threats to Australian businesses. Beyond operational and reputational damage, the new reporting rules will:
- Push businesses to reassess incident response strategies
- Encourage stronger cybersecurity policies
- Raise board-level visibility of cyber risks
How Organisations Should Respond
This change isn’t just about reporting—it’s a wake-up call for all businesses to review and strengthen their cybersecurity posture. The best place to start? A comprehensive cyber risk assessment.
An effective cyber risk assessment will:
- Reveal unknown vulnerabilities and exposure
- Evaluate current incident response readiness
- Prioritise remediation steps based on real risk
- Support regulatory compliance and strategic decision-making
Key Recommendations for Businesses
- Review the New Regulations – Visit the official Cyber Security Act update to confirm whether your business is affected.
- Conduct a Cyber Risk Assessment – Identify and address weaknesses before attackers find them.
- Update Your Incident Response Plan – Ensure you can act swiftly and meet reporting deadlines.
- Train Your Staff – Human error remains a top cause of breaches. Regular training reduces this risk.
- Reassess Ransomware Policies – Build a plan that avoids ransom payment altogether through proper controls and backups.
Where Sentry Cyber Can Help
At Sentry Cyber, we work with Australian businesses to proactively assess and improve their cybersecurity posture. We can help you:
- Conduct a tailored cyber risk assessment
- Understand your compliance obligations under the new Act
- Build or refine your ransomware response strategy
- Improve resilience through practical, actionable recommendations
If you’re unsure where to start or want support navigating these new requirements, contact us today — we’re here to help.