Cyber Safety & Fraud Prevention: Where to begin?

July 15, 2022

Today businesses of all shapes and sizes rely on connecting with people digitally and as a result depend heavily on the internet, which continues to rapidly transform our world. It is an important part of how we operate, communicate and interact with each other every day.

According to the 2020 Australian Cyber Security Centre (ACSC) Annual Cyber Threat Report, the COVID-19 pandemic has undoubtedly increased dependance on the internet for both individuals and organisations; which has correlated to the increase in opportunities for malicious cyber actors to take advantage of those online who may be more vulnerable.

Online criminal activity is getting more advanced as data and financial systems are compromised, taking us away from important business activity. While losses can be significant, your business or organisation’s reputation could be changed in an instant with losses far greater than those recorded on the balance sheet.

The 2020 NAB Cyber Security Survey found that 6 in 10 Australian businesses have been victims of a cyber security incident in the last year, and fewer than 20% are confident that they have the right controls in place to prevent and handle such situations.

The good news is that you and your organisation can stay safe online without a large investment in resources, tools or money. Some measures can be easy, such as reviewing procedures and operations; others involve some investment in hardware and expertise and many risks can be lowered significantly by educating those within your organisation.

While it may seem overwhelming at first, experts recommend not to get caught in the complexities of hardware and software first-off, instead aim to make those in your organisation alert to the dangers of online fraud by creating awareness.

What can you do to raise awareness of cyber-crime and fraud in your workplace?

A good first step is encouraging staff to be vigilant.

Regardless of the size of your organiation, every employee needs to understand how to protect data and use the internet, including email, safely.

An unprepared or uninformed team can introduce threats into your systems without realising. Aim to encourage all suspicious activity, regardless of how small or trivial it may seem, to be reported as soon as possible. Cyber-crimes and cyber security incidents can be reported directly to Reportcyber. This is the central place to report a cyber security incident, cybercrime, or a cyber security vulnerability from any organisation or individual across Australia.

Cyber-crimes take place every day. As reported in the ASCS Annual Cyber Threat Report 2020-21, during the 2020-21 financial year, over 67,500 cybercrime reports were made via ReportCyber, an increase of nearly 13% from the previous financial year. One cybercrime report is made approximately every eight minutes in Australia.

Emphasise why it’s important to remain vigilant through education

A fraudulent activity or cyber-attack on the workplace can cause more harm than anticipated. While many may think only the employee responsible will face consequences, the ripple effect does make its way across the organisation.

Everyone in your organisation needs to understand the effect an attack can have. More often than not, there are monetary consequences, but attacks also affect colleagues, clients and most importantly reputation. The trust between your organisation and customers may be compromised as people begin to question the security of their data.

Share learnings and make cyber security part of regular conversations. Education and training will help minimise the risk. There are a variety of cyber safety organisations who can provide resources and training to help. Visit the Australian Government eSafety Commissioner website for free e-resources or take a look at the NAB online training module for small businesses.

As with everything digital, cyber security is continuously changing. Keeping your organisation up-to-date might seem a low priority task, but it could be the difference between your systems, accounts or data being compromised or not.

Be prepared and ready with a plan and practice

Despite the best of efforts, your organisation may fall victim of a cyber-crime. Preparation is the key to ensuring you and your team are ready to mitigate further risk and safely navigate the tricky situation.

Practice with scenarios and work through possible steps as a team. Start by assessing the incident – how did the attack occur? What systems have been affected? What is the extent of the incident?

No matter the size of the organisation, making someone responsible for managing incidents as they arise. It doesn’t have to be the most senior individual; it should be the best person to deal with a cyber security incident – this would ideally be someone who has a good understanding of the practical yet technical impacts of the incident and translate between the two.

Regardless of the type of crime, it’s important to act quickly to either stop the crime escalating or fix the problem at the source. There are many partners and resources to help you as needed. Cyber-crimes should be reported directly to the Australian Cyber Security Centre (ASCS) and similarly, data or privacy breaches to the Office of the Australian Information Commissioner (OAIC).

Most importantly, after the incident has occurred, re-group as an organisation and assess the findings, amend plans for the future and implement the changes for better protection.

For more information about cyber safety and fraud prevention, visit:

< Older Post

Newer Post >

Share this article:

Is My Data Safe? - Lessons to Learn from the CrowdStrike Outage

By Seth Khouri • August 16, 2024

A Major IT Outage: What Happened? On July 19, 2024, a significant IT outage disrupted services worldwide. Banks, healthcare facilities, emergency services, and payment systems faced interruptions, causing widespread business closures and even flight cancellations. This global incident left many travelers stranded and businesses scrambling to restore operations. What is CrowdStrike? CrowdStrike is a leading American cybersecurity company specialising in software to monitor and detect cyber threats. Their flagship product, Falcon EDR (Endpoint Detection and Response), acts like a powerful antivirus tool. It detects and mitigates security threats, alerting of potential hackers. During a recent update, it caused many computers to crash, resulting in the infamous Blue Screen of Death (BSOD) on Windows systems. Given that Microsoft systems constitute about 70% of desktop operating systems worldwide, the effects of this outage were extensive, impacting millions globally. * Is My Computer Safe? The good news is that CrowdStrike's products are primarily used by organisations, not individual home users. If you are using regular antivirus and anti-malware programs, you would not have been affected by this outage. However, it raises an important question: what can I do to prepare for future outages?

Saint Ignatius College, Geelong embraces the flame and follows the footsteps of Mary MacKillop with the opening of a new senior learning centre

By Seth Khouri • August 9, 2024

On the third floor of the MacKillop Senior Centre at Saint Ignatius College Drysdale, on the Bellarine Peninsula, a small group of students take up positions in a comfortable alcove outside the main classrooms. Some pull tables together and spread-out folders and books, others face each other in pairs in animated discussion, while others work in contented independence on their laptops. The centre, completed in March 2024, and its many well-designed informal and formal learning spaces, is part of a broader vision that helps achieve the college’s mission to provide the best quality co-educational Catholic education in the Geelong region. “It’s a beacon of opportunity and collaboration”, says College Principal Michael Exton.

Celebrating Unity and Culture: 2024 CDF Wardandi Gift

By Michelle Ross-FitzGerald • July 9, 2024

At the heart of the vibrant South West region of Western Australia, a special event unfolded on May 9, 2024, that showcased the beauty of unity, culture, and community spirit. St Mary’s Catholic Primary School in Bunbury emerged victorious in the CDF Wardandi Gift, held on the grounds of Bunbury Catholic College . Created in 2023 to celebrate Bunbury Catholic College’s 50th anniversary, this year’s event was a wonderful culmination of hard work by college event coordinator Michael Chappel and Indigenous Student Coordinator Tobie Watson. The CDF Wardandi Gift was more than just a relay race. It was a celebration that brought together approximately 200 students from five primary schools: St Mary’s and St Joseph’s Catholic Primary Schools in Bunbury , Our Lady of Lourdes Primary School in Dardanup , St Mary’s Primary School in Donnybrook , and Djidi Djidi Aboriginal School in Bunbury . These schools gathered on Albert Oval for a day filled with activities that honored Aboriginal culture. The event was not just a celebration of culture, but also a reflection of Catholic values. It emphasised the importance of community, respect, and inclusivity, core tenets of our faith. As Pope Francis often reminds us , "The Church is a community of those who have encountered Jesus Christ and have made a commitment to follow him." The CDF Wardandi Gift embodied this spirit of community and commitment. It was a day where many came together to honor the rich cultural heritage of our Aboriginal brothers and sisters, recognising the divine presence in every culture and tradition.

CDPF Limited, a company established by the Australian Catholic Bishops Conference, has indemnified the Catholic Development Fund ABN 15 274 943 760 (the Fund) against any liability arising out of a claim by investors in the Fund. In practice, this means your investment is backed by the assets of the Catholic Archdiocese of Melbourne. The Fund is required by law to make the following disclosure. Investment in the Fund is only intended to attract investors whose primary purpose for making their investment is to support the charitable purposes of the Fund. Investors’ funds will be used to generate a return to the Fund that will be applied to further the charitable works of the Archdiocese of Melbourne and the Dioceses of Sale and Bunbury. The Fund is not prudentially supervised by the Australian Prudential Regulation Authority nor has it been examined or approved by the Australian Securities and Investments Commission (ASIC). An investor in the Fund will not receive the benefit of the financial claims scheme or the depositor protection provisions in the Banking Act 1959 (Cth). The investments that the Fund offers are not subject to the usual protections for investors under the Corporations Act (Cth) or regulation by ASIC. Investors may be unable to get some or all of their money back when the investor expects or at all and investments in the Fund are not comparable to investments with banks, finance companies or fund managers. The Fund’s identification statement may be viewed here or by contacting the Fund. The Fund does not hold an Australian Financial Services Licence.