<ul><li>Australia has mandated businesses to report ransomware payments.</li><li>Starting from May 30, 2025, if a business in Australia decides to pay a ransom, it is legally required to report the incident to the government within 72 hours.</li><li>The new requirement is part of the Cyber Security Act, aimed at improving the government's ability to respond to cyber threats and track cybercrime trends.</li><li>The law applies to businesses and organizations in Australia with an annual turnover of $3 million or more, as well as public entities responsible for critical infrastructure.</li></ul>

Australia mandates reporting of ransomware payments

Discover more