Story image

Kiwi businesses blasé about cyber attacks

13 Nov 15

Sixty-two percent of Kiwi businesses polled in a recent survey don’t have an IT privacy and security strategy in place, and only 50% had a person specifically tasked with cyber-security.

The stark figures are highlighted in the Grant Thornton International Business Report, a global survey of 2500 business leaders.

The report reveals that cyber attacks are taking a serious toll on businesses globally, with one in six businesses surveyed facing a cyber attack in the past year and the total cost of attacks globally estimated to be at least US$315 billion over the past 12 months.

Regionally, cyber attacks are estimated to have cost Asia Pacific businesses $81 billion in the past 12 months.

In New Zealand, however, only 26% of respondents surveyed see cyber attacks as a threat in their sector. That’s despite the Australian Cyber Security Centre recently raising concerns about the level of attacks being seen there.

Hamish Bowen, Grant Thornton New Zealand partner, operational advisory, says high profile security breaches are becoming more common and without a comprehensive strategy to prevent digital crime, businesses 'are really putting themselves in the firing line'.

"And it's not just financial risks that businesses need to be worried about, there can be a high price to pay in terms of reputational damage as well - just look at Ashley Madison and Sony," Bowen says.

He says says IT privacy and security should be at the top of the agenda for all organisations.

"It's no longer a question of if your business will come under attack, but when," Bowen adds.

New Zealand’s National Cyber Security Centre (NCSC) saw an increase of more than 60% in reported incidents in 2013.

"The NCSC's 2014 and 2015 incident reports haven't been released yet, but I'm sure we'll see an increase in that figure for the past two years based on what's happening in the current environment," Bowen says.

Paul Jacobs, Grant Thornton global leader of cyber security, says businesses cannot afford to be behind the curve.

"Cyber attacks can strike without warning and sometimes without the victim being immediately aware. The pressure from customers and clients cannot be ignored," Jacobs says.

"In this digital age, rigorous security and privacy is expected. If this cannot be guaranteed, the ultimate risk is they will simply go elsewhere."

The global figures show the average cyber attack is costing businesses 1.2% of revenues.

52mil users affected by Google+’s second data breach
Google+ APIs will be shut down within the next 90 days, and the consumer platform will be disabled in April 2019 instead of August 2019 as originally planned.
GirlBoss wins 2018 YES Emerging Alumni of the Year Award
The people have spoken – GirlBoss CEO and founder Alexia Hilbertidou has been crowned this year’s Young Enterprise Scheme (YES) Emerging Alumni of the Year.
SingleSource scores R&D grant to explore digital identity over blockchain
Callaghan Innovation has awarded a $318,000 R&D grant to Auckland-based firm SingleSource, a company that applies risk scoring to digital identity.
IDC: Standalone VR headset shipments grow 428.6% in 3Q18
The VR headset market returned to growth in 3Q18 after four consecutive quarters of decline and now makes up 97% of the combined market.
Spark Lab launches free cybersecurity tool for SMBs
Spark Lab has launched a new tool that it hopes will help New Zealand’s small businesses understand their cybersecurity risks.
Preparing for the future of work – growing big ideas from small spaces
We’ve all seen it: our offices are changing from the traditional four walls - to no walls. A need to reduce real estate costs is a key driver, as is enabling a more diverse and agile workforce.
Bluetooth-enabled traps could spell the end for NZ's pests
A Wellington conservation tech company has come up with a way of using Bluetooth to help capture pests like rats and stoats.
CERT NZ highlights rise of unauthorised access incidents
“In one case, the attacker gained access and tracked the business’s emails for at least six months. They gathered extensive knowledge of the business’s billing cycles."