Story image

BDO & AusCERT kick off 2017 A/NZ Cyber Security Survey

14 Aug 17

BDO and AusCERT have kicked off their second annual Cyber Security Survey and they’re looking for input from all decision makers across Australia and New Zealand.

The survey aims to find out current cybersecurity trends, issues and threats facing A/NZ, with the ultimate goal of delivering insights that can help organisations build and maintain their cyber resilience.

BDO’s national leader for Cyber Security, Leon Fouche, says public awareness about cyber issues has never been higher – in part due to the numerous ransomware attacks in recent months.

“The frequency, nature and cost of cyber incidents are on the rise with all industry sectors being targeted.  The survey results will highlight whether that knowledge is translating into business readiness,” he says.

According to BDO, many organisations are now looking at cyber insurance as part of their risk mitigation strategy. The survey also aims to find out whether more organisations are buying cyber insurance this year, and if those insurance policies are adequate in relation to risk exposures and current cybersecurity risk levels.

“Last year we received strong support from industry, with more than 400 respondents across a variety of industry sectors. The value of the benchmark data we obtained not only provides a snapshot of the current state of the cyber landscape in Australia and New Zealand, but it also allows businesses to conduct local benchmarking,” Fouche comments.

The 2016 survey found that 22.1% of respondents experienced ransomware incidents in the last financial year, but only 10.8% expected to encounter them in the next year.

13% said they expected incidents caused by unauthorised access to information by external users, and 11.9% expected malware/Trojans as well as data loss.

Brute force attacks scored lowest on participants’ radars: Only 1.7% expected them in the coming financial year, down from 2.8% in the last year.

The survey also found that 98.2% of respondents in state government had email filtering systems, compared to 88.5% of those in education and training institutions.

Respondents across all sectors scored low on regular cyber risk assessments: 48.9% of those in professional, scientific and technical services, compared to 71.4% in information media and telecommunications.

Information media and telecommunications also scored highest in cybersecurity awareness (68.6%), compared to 41.7% in education and training.

The 2017 survey is now open and closes on Friday September 15. All survey data is anonymous. Those who participate get direct access to the final report in November. Those interested can participate through AusCERT.org.au or bdo.com.au.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Verifi takes spot in Deloitte Asia Pacific Fast 500
"An increasing amount of companies captured by New Zealand’s Anti-Money laundering legislation are realising that an electronic identity verification solution can streamline their customer onboarding."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.