Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Small business lags on computer security

A new study says small businesses have embraced the internet but many aren't taking all the necessary security precautions.

Small businesses have embraced the internet but 16 per cent don't use anti-virus software and 30 per cent don't use a protective firewall, a new study shows.

That leaves them at risk from an extensive and increasing number of internet threats, the Australian Institute of Criminology (AIC) says.

Releasing the study for Safe Internet Day, Attorney General Nicola Roxon said most small businesses could not function without the internet.

"So it's important small businesses can identify threats and can put in place measures to protect themselves and their customers," she said in a statement on Tuesday.

Home affairs minister, Jason Clare, said small business comprised about 95 per cent of all Australian businesses, contributing about 34 per cent of private industry value to the economy.

"Cyber attacks can stop a small business being productive and this can have wider economic implications for the country," he said in a statement.

The survey — the Australian Business Assessment of Computer Use Security (ABACUS) — included 3290 small business respondents, with 14 per cent reporting one or more security incidents in the period 2006-07.

Seventy-five per cent of those who experienced security incidents reported adverse consequences including loss of data, unavailability of service and an average financial loss of $2431.

On top of traditional threats including viruses and malware, new threats are emerging.

The survey found that 84 per cent of businesses were using anti-virus software, 63 per cent were using anti-spam programs and 58 per cent were using anti-spyware tools.

But only 70 per cent of small businesses were using firewalls to protect their computer systems and only seven per cent had policies in place stipulating acceptable computer use by staff.

"The risks for businesses and their online customers are likely to change and potentially increase," Report author AIC analyst Alice Hutchings said.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: antivirus, Australian Institute of Criminology (AIC), Home Affairs Minister Jason Clare, Jason Clare, security, small business, software
Latest Blog Posts
Whitepapers
  • Three simple steps to better patch security
    It’s estimated that 90% of successful attacks against software vulnerabilities could be prevented with an existing patch or configuration setting. Yet patching is a persistent challenge for IT managers. With the glut of patches released each year, how do you know which ones are truly critical security patches and which ones aren’t? And how can you identify which computers are actually missing the patches they need? This paper details a simple approach to patching that gives you better visibility into and control over patch assessment and compliance.
    Learn more »
  • Case Study: Danske Bank Group improves efficiency and reduces time to market
    Danske Bank Group wanted to deliver new services faster. It sought to reduce time to market from approximately 14 months to nine months and increase IT development efficiency by 10 percent. Find out more.
    Learn more »
  • Oracle Database 11g Product Family
    Oracle Database 11g is available in a variety of editions tailored to meet the business and IT needs of all organisations. This paper outlines the features and options available with each edition of Oracle Database 11g. Read on for more details.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments