Australia: Cyber Security Centre published guidance on security risks in social media and messaging services

On 9 April 2026, the Cyber Security Centre published a guidance on the security and privacy risks associated with social media and messaging services. The guidance is directed at organisations across the public and private sectors that use platforms including Facebook, LinkedIn, Signal, TikTok, and WhatsApp. Organisations are advised to restrict account access to authorised staff only, revoke access immediately when no longer required, and ensure staff are trained on appropriate usage policies, including what may and may not be posted using organisational accounts. It recommends organisational accounts to be secured with multi-factor authentication and unique passwords. It also emphasises clear processes for responding to the posting of sensitive or inappropriate information and for recovering hijacked accounts.