6 Ways to Protect your Business Online

Australian businesses know their cybersecurity has never been more vital. Yet, businesses are increasingly falling prey to cybercriminals, losing hundreds of millions of dollars every year.¹ When there is so much at stake, how are business leaders managing the ongoing threat and safeguarding future growth?

A rising threat 

Cybercrime² is on the rise in Australia, with a breach now reported every seven minutes, according to the Australian Cyber Security Centre (ACSC).³

Its data shows not only is cybercrime becoming more frequent, but it is also growing more expensive and the bigger a business, the more at risk it may be.

There is far more at stake however than a one-off financial loss. Even if a business can sustain the immediate fallout, it may take months or even years to rehabilitate its image, says Lorenzo Schirru, Head of Fraud, Strategy, Risk and Governance at Macquarie’s Banking and Financial Services.

“The damage to a business’ reputation and brand can be enormous. There can be customer attrition and customers may openly question your business and ask, ‘well, am I safe with you?”

Eli Glotzer, Head of New and Emerging Growth Industries at Macquarie Business Banking, says cybersecurity has become “one of the key challenges for small to mediumsized enterprise” and one business owners cannot afford to be complacent about.

“If you were unable to trade for a week, if you couldn’t access any systems, or if you incurred a significant financial loss, would your business be able to survive?” asks Glotzer.

“If the answer is ‘no’, then the next question is logical. What are you doing to mitigate that risk?”

6 ways to protect your business online

1 Protect your ‘primary asset’

It is essential customer data is treated as a business priority. Key to this is clarifying what information the business actually needs from customers and what their responsibilities are when recording it.

2 Mitigate this $227 million threat

Often an attempt on a business will first show up in an inbox, with 91% of all cyberattacks starting with email⁴, according to Microsoft.

One of the most common methods is known as a Business Email Compromise attack in which criminals impersonate a known person in order to fraudulently obtain access or money — sometimes even sending a message from an authentic email address.

In Australia, they cost businesses $227 million in 2021, the most of any scam affecting businesses, according to the ACCC.⁵

In sectors where substantial sums of money are commonly being transferred, the risks posed by these types of scams are particularly acute.

3 Strengthen your weakest link

Types of attack can differ, but many rely on the same things to be successful: human error. In any process, people are going to be a primary target. All it takes is one staff member to fall victim to expose the entire business.

Business owners cannot monitor every threat their entity faces but they can ensure their employees’ training is up to speed on how to spot a warning sign.

Businesses need to remain vigilant and ensure they are validating who they’re speaking with when dealing with external communications.

4 Partner up

Not every small business has the scale to employ a full cybersecurity division, but that does not mean they do not have other resources at their disposal.

5 Prepare for the worst

While business leaders are treating cybersecurity as a key priority, things can still go wrong. In case they do, it is crucial contingency plans are ready to go. For those plans to kick into action, there must also be a culture of transparency. Mistakes inevitably will be made so staff need to feel comfortable reporting them.

6 Work backwards

When assessing their cybersecurity, robust businesses start by analysing where the biggest risks lie. Understand what is most valuable and asking yourself what someone would want to steal will change industry to industry.

If you’d like further information, please contact your Macquarie Business Banking relationship manager, or request a call.

Read the full article and access out toolkit here.  

1 accc.gov.au/system/files/Targeting scams report of the ACCC on scams activity 2021.pdf

2 afp.gov.au/what-we-do/crime-types/cybercrime 

3 cyber.gov.au/about-us/reports-and-statistics/acsc-annual-cyber-threat-report-july-2021-june-2022

4 microsoft.com/en-us/security blog/2020/03/20/protecting-against-coronavirus-themed-phishing-attacks/

5 accc.gov.au/system/files/Targeting scams report of the ACCC on scams activity 2021.pdf

This article has been prepared by Macquarie Business Banking, a division of Macquarie Bank Limited ABN 46 008 583 542 AFSL and Australian Credit Licence 237502 and does not take into account your objectives, financial situation or needs — consider if right for you.

The commentary provided in this article is based on information obtained from sources believed to be reliable, but we do not make any representation or warranty that it is accurate, complete or up to date. We accept no obligation to correct or update the information or opinions in it. Any opinions expressed are subject to change without notice. Opinions expressed in this article by third parties are not representative of the Macquarie Group and no member of the Macquarie Group accepts liability whatsoever for any direct, indirect, consequential or other loss arising from any use of this article and/or further communication in relation to this article. We make no guarantee concerning the accuracy of data and information contained on third party websites.