Protecting yourself from cybercrime threats

Last week one of Australia’s biggest companies became the latest victim of cyber-crime. With the  Optus hack, more than 9 million customers have had their data stolen from the telecommunications giant. It’s a CEO’s worst nightmare.

It isn’t just individuals who have something to worry about with the theft of their licence numbers, phone numbers and email addresses. The SME community needs to be vigilant too. Cyber criminals are looking for victims who are the most exposed with weaker security measures in place to protect their information. Cyber-crime can cause massive damage. In most cases, the criminals are looking to steal data, but ransomware attacks are also becoming more common. Legal action could be taken by customers if proper safeguards are not in place and breaches occur. 

So, what is the latest advice for SMEs and how can you stay safe? We have assembled some tips to assist you:

Passphrases

Instead of words, use a number of ‘passphrases’ to protect access to your devices and networks that hold important business information. Passphrases are passwords that consist of a phrase, or a collection of different words. They are easy to remember, but difficult for machines to crack. Don’t use the same code for multiple accounts – keep track of what each password is with a password manager, or even write them down in notebook to keep track if you must.

Back up your data

Remember to make sure that any security software is regularly updated on all your work and personal devices. It takes a small amount of time, but the benefits may be invaluable.

Don’t click on hyperlinks sent via email or text

Don’t click any hyperlinks from organisations or people you don’t know. If the message seems like it could be suspicious, it probably is. Tell your staff. Ask yourself if a bank would send you a text message? Keep up to date with who you work with and who you bank with. Don’t take calls from organisations who call you when you don’t have an account with them. Ask yourself is this call or email genuine? Some can seem very convincing, for example, pretending to be chasing a late invoice from a well-known organisation.

Train your staff

Some employees may not know (or care enough) to protect themselves online, and this can put your business at risk. Invest in training sessions to help employees manage passwords (hint: two-factor authentication for business accounts) and to identify phishing attempts. Provide support to make sure employees have the resources they need to be secure. Consider formulating an easy-to-read cyber security policy and make sure your staff are aware of it and understand it. Tell staff to be careful of office laptops and devices when they are taken outside of the office.

Don’t let children play with your phone

Don’t let children access your phone or your laptop (or anyone else’s for that matter). It only takes a moment to click on a link you don’t want to open or to go to a scam website that could invite unwanted guests into your system.

More information

If you would like more information on how to protect your business or the latest updates, go to the federal government’s cyber security website:  Protect your business from cyber threats | business.gov.au

Scroll to Top