Current IT Security Threats and Alerts

Laptop and a stethoscope on top of it | Feautured image for Current IT Security Threats and Alerts

Current IT Security Threats

Many small and medium-sized business owners are vulnerable to IT attacks. According to the Australian Small Business and Family Enterprise Ombudsman, “cybersecurity is a big problem for small business” in Australia. As the rate of penetration of digital technologies into the small and medium-sized business landscape increases, so does the rate of breaches and security incidents. Telstra Security Report 2019 findings are clear and alarming – 63% of businesses experienced an interruption to their regular operations due to a breach, with a staggering 88% of businesses reporting that they have had breaches slip by their detection measures. Merely using antivirus software is no longer enough to protect your business in a digital landscape where as many as 22% of businesses affected by the 2017 wave of ransomware attacks were unable to continue operating. Keeping informed about the current IT security threats can help you better understand the kinds of risk your business may find itself at. If all the digital security jargon goes over your head, however, our managed IT services team is here to help. Call us on (07) 3062 6932 to get help with securing your business, or continue reading to learn more about the current IT security threats active as of June 2020.

Current IT Security Threats Targeting Australians

Australian Federal Government’s Australian Cyber Security Centre website cyber.gov.au maintains a list of current IT security threats targeting users in Australia. As of early June 2020, cyber.gov.au lists nine alerts that warn of current IT security threats targeting Australians:

Current Computer Virus Alerts

McAfee Threat Center provides is a public resource providing information on current computer virus alerts, including a list of top 10 cybersecurity threats at a given time. At the time of writing (9th of June 2020) McAfee Threat Center warnings included:

Current Malware Alerts and System Vulnerabilities

McAfee Threat Centre contains not only ransomware and current computer virus alerts, but it is also a resource reporting on the current threat landscape in general, including current malware alerts and newly discovered system vulnerabilities.

Current Online Scam Alerts Targeting Australians

Australian Competition and Consumer Commission (ACCC) website scamwatch.gov.au maintains a list of current online scam alerts targeting individuals in Australia.

  • 6th of January 2020 – Bushfire scams– Scammers pretending to be legitimate charities, creating fake charities and pretending to have been affected by bushfires, cold-calling, online messaging and creating fake websites as well as social media pages to raise funds.
  • 9th of January 2020 – Bushfire scams– Including scams targeting businesses and government organisations where the scammer would impersonate a high-level employee in the targeted organisation claiming the business would be making a donations in the way of bushfire relief, but intended to be deposited in the scammer’s account.
  • 9th of February 2020 – Romance scammers targeting new apps– a report highlighting how online scammer move beyond traditional online dating websites, now targeting victims on social media.
  • 10th of March 2020 – An increase in scams targeting Gen Z Australians – With the ACCC predicting more scams are targeting users on newer digital platforms such as Snapchat and TikTok, taking advantage of Gen Z Australians through targeting of their self-perceived tech-savviness.
  • 18th of March 2020 – COVID-19 (Coronavirus) scams–  scammers taking advantage of the Australian consumer fears concerning the COVID-19 outbreak, including phishing e-mails, phone call impersonating the WHO and Australian Government authorities as well as legitimate businesses with scam types such as misinformation, fake cure sale attempts and investment scams.
  • 20th of March 2020 – Further COVID-19 scam warnings– where scammers adapt existing technology to exploit the public’s fear concerning the spread of Coronavirus in order to sell products claiming to prevent or cure the disease. Again, the scams reported by the ACCC ranged from misinformation to investment scams.
  • 6th of April 2020 – Superannuation scams exploiting Australian’s financially impacted by the COVID-19 crisis – Through cold-calling, claiming to be able to help the public with early access to superannuation, scammers attempt to obtain personal information to take advantage of the Federal Government’s announcement that Australian’s suffering financial hardship may be able to partially access their superannuation from mid-April.
  • 18th of May 2020 – Puppy scams– scammers set up fake websites, online ads, classifieds and social media pretending to sell in-demand dog breeds, targeting Australians in social isolation, seeking a companion animal.
  • Current COVID-19 scams – a comprehensive compilation of approaches online scammers are using to target Australians amidst the coronavirus crisis, from phishing, superannuation, online shopping to scams targeting businesses, including an overview of the ways scammers may use to contact their victims.

While not all of these alerts may seem like they have the potential to directly affect a small business owner, the sheer volume of new threats that consistently keep on appearing in 2020 is alarming and highlights the need for improved digital security literacy. Malicious actors increasingly target not only more traditional computer systems and networks but are also more and more interested in compromising mobile devices.

Bookmark these resources for your reference and check back often for updates or just let our professional team assess your business security needs and provide the IT solutions your organisation needs to stay as safe and secure as possible. Get in touch online or call us on (07) 3062 6932 to get help with securing your business from the current IT security threats.

More blog posts

How to create secure passwords

How to create secure passwords

Weak passwords are one of the biggest security risks to your business.
Why?
Because cyber criminals are getting smarter than ever before. If they manage to crack just one password, they could gain access to your sensitive business data, financial information, or even gain control of your entire system.
Cyber criminals use automated tools to guess passwords, allowing them to try out millions of combinations in seconds. So, if you’re using something like “Password123” or “CompanyName2025”, you’re practically handing them the keys to your business.
A compromised password can lead to big issues, such as:
• Data breaches
• Financial losses
• Identity theft
• Reputation damage
But how do you create strong passwords without driving yourself (and your team) mad?
Think of your password like a secret recipe, where only you should know the ingredients. It should:
• Be at least 14 characters long (the longer, the better)
• Include a mix of uppercase and lowercase letters
• Contain a few numbers and symbols (like @, $, %, or &)
• Not contain any common words or easily guessable information (like birthdays, names, or the word “password”)
Instead of using a single word, you could try a passphrase – a short, random sentence that only you would understand. For example, instead of “Sailing2025”, try something like “Coffee&CloudsAreGreat9!”. This is much harder to crack, yet still easy to remember.
You should also steer clear of these common mistakes:
• Using personal info (your name, birthday, business name, etc.)
• Reusing the same passwords across multiple accounts
• Using simple sequences (“123456” or “abcdef”)
• Storing passwords in an easily accessible place (like a sticky note on your desk)
If remembering unique passwords for every account sounds impossible, there is another option: Password managers. These generate strong passwords, store them securely and autofill them for you.
With a password manager, you only need to remember one strong master password for the manager app itself. The rest are encrypted and stored safely, reducing the risk of data breaches.
Even the strongest password isn’t foolproof, which is why multi-factor authentication (MFA) is also important. MFA requires a second form of verification, like a one-time code sent to your phone or generated from an authentication app.
If you have employees accessing your business systems, it’s a good idea to have a password policy in place to explain your rules and why they’re important. This should include:
• Unique passwords for each system and account
• Regular security training on password best practices
• Business-wide use of MFA for critical systems
• Scanning for compromised passwords regularly
By making password security a priority, you can reduce the chances of a cyber attack creating a nightmare for your business.
And if you need help making your business more secure, get in touch.

Beware these common ‘malvertising’ attacks

Beware these common ‘malvertising’ attacks

Ever clicked an online ad and wondered afterwards if it was a scam?… most of us have – and cyber criminals want us to keep doing it. Here’s what to look out for to stop your business’s data (and profits) falling into the wrong hands…

Call Now Button