Cybersecurity Month: Experts urge businesses to boost defences

Cybersecurity Awareness Month is upon us, drawing attention to the critical role cybersecurity plays in safeguarding digital landscapes. Key industry experts have shared their insights on the importance of this month, stressing the need for businesses to bolster their cybersecurity measures in response to escalating threats.

Adrian Covich, Senior Director, Systems Engineering, Asia Pacific and Japan at Proofpoint, underscores the importance of creating a resilient cyber ecosystem to secure our collective future amid the rise of artificial intelligence (AI). According to Covich, the focus should not solely be on securing systems but also on protecting individuals.

He notes that cyber attackers are "increasingly targeting human vulnerabilities", with 69% of Australian Chief Information Security Officers (CISOs) identifying human error as the primary cybersecurity flaw in their organisations, a rise from 51% in 2023, according to Proofpoint's 2024 Voice of the CISO report.

In light of these findings, 86% of Australian CISOs consider deploying AI-powered technologies to counter human error and advanced human-centred threats. Covich explains that, unlike networks, people cannot be "locked down"; they operate in dynamic environments using various tools to stay connected.

AI offers critical tools to address these evolving threats by covering various communication channels, from emails to collaboration platforms and cloud services. Nevertheless, Covich emphasises that while AI-driven defences are vital, awareness and education remain the most powerful tools in combating cybersecurity threats. He reminds Australians to verify media authenticity, confirm suspicious contacts' identities, limit personal information shared online, and remain sceptical of offers that seem too good to be true.

Andrew Borthwick, Managing Director for Australia and New Zealand at Orange Business, highlights the severe surge in cyber threats Australia is experiencing. Research from Orange Cyberdefense reveals a 61% increase in cyber extortion attempts against Australian businesses in the past year, marking the highest number of victims in the region.

Borthwick stresses the urgent necessity for organisations to prioritise vulnerability management and hyper-automation as part of their cybersecurity strategy. This approach involves implementing advanced threat detection solutions to identify and neutralise threats in real-time, engaging in penetration testing, and conducting regular cybersecurity awareness training. He acknowledges that cyber threats pose dangers across all industries, with a notable impact on critical infrastructure and supply chains, potentially affecting jobs, productivity, and national security.

Manuel Salazar, Director of Cyber Services at Orro, notes that despite heightened awareness, the first half of 2024 saw the highest number of reported cyber breaches in three years.

Salazar advocates for businesses to review their cyber processes and establish comprehensive measures to protect against and respond to cyber threats. To enhance protection, Salazar recommends that businesses remain cyber-vigilant by regularly updating security investments as their risk posture evolves. He advises developing a detailed cyber crisis management plan to ensure rapid identification, response, and recovery from cyber incidents. Additionally, he emphasises fostering a security-conscious culture within organisations, equipping employees with the knowledge to recognise and report phishing attempts and cyber threats.

Darryl Jones, Vice President of Consumer Strategy at Ping Identity stressed to TechDay that the current digital payment experience "is not always a pleasant or easy one."

"Whether it's logging into a banking app, making purchases online, or paying through a mobile wallet, consumers use their digital identities every day, often multiple times a day, to interact with businesses online," he explained.

"Our 2024 Consumer Survey found that the majority of consumers (89%) have complaints about passwords, with 61% admitting they have too many to keep track of. To no surprise, over half (54%) have stopped using an online service because they became frustrated when trying to log in."

Jones highlighted that traditional password-based authentication "does not provide the most secure or seamless experiences" which he believes are the two critical elements to earning consumer trust.

"Adopting a mindset of 'never trust, always verify' will not only help improve resilience against emerging AI-based threats, but create a better overall digital experience for consumers. This Cybersecurity Awareness Month, I encourage organisations to explore the powerful combination of identity verification and digital credentials to help create a more secure world."

As Cybersecurity Awareness Month unfolds, these expert insights underscore the importance of both technological solutions and ongoing education to create a robust defence against the ever-evolving landscape of cyber threats. Businesses are urged to take proactive measures to safeguard their systems and foster a cyber-resilient culture among their workforce.