SMEs don't understand security risks, ACSC survey finds


By Amy Sarcevic
Tuesday, 07 July, 2020

SMEs don't understand security risks, ACSC survey finds

Australian SMEs appear to be uninformed and unequipped when it comes to cybersecurity, a landmark study by the ACSC and PM&C has found.

Each year cyber incidents cost this cohort a combined $29 billion, yet nearly half of them cannot or will not invest more than $500 per annum on cybersecurity.

A general lack of awareness and understanding of IT is largely to blame.

Of more than 1700 people surveyed, nearly one in 10 were unable to explain cyber threat terminology such as malware, phishing, ransomware or insider threats. One in five Mac users were unaware of which operating system their business was using, while the same proportion of Windows users have an operating system that stopped receiving security updates in January 2020.

Additionally, there was an apparent reluctance to invest in cybersecurity, with the majority of respondents underestimating the damage a cyber attack could cause. Around 87% believed they could regain normal operations immediately or within a few days following an attack.

Sole traders were the least prepared with just 3% outsourcing their own cybersecurity, compared with 35% of higher-staffed SMEs. Those who were outsourcing their IT overestimated the level of protection it provided.

Despite underestimating the risk, 90% of respondents are seeking to further their understanding and better manage cybersecurity threats.

Many blame complexity and a lack of dedicated IT staff for their current practice.

Image credit: ©stock.adobe.com/au/MIND AND I

Related News

DigiCert acquires Valimail to boost email security

DigiCert has acquired DMARC provider Valimail in a bid to enhance its email authentication...

Akamai adds secure browser to ZTNA portfolio

Akamai has partnered with Seraphic to incorporate secure enterprise browser capabilities into its...

Rubrik announces CrowdStrike Falcon integration

Rubrik has announced the integration of its Rubrik Identity Resilience solution with the...


  • All content Copyright © 2025 Westwick-Farrow Pty Ltd