Data from a cyber insurance provider CFC Underwriting shows that a quarter of its claims in 2016 could have been avoided through better staff training on cyber risks.
CFC’s research revealed that 27% of SME staff are not being adequately educated about online threats and suggested more thorough training in this area.
The core of this issue, according to the underwriter, is that many of these organisations simply do not know where to start and lack a good understanding of their cyber risk profile.
The research follows a 2016 report which called for greater cyber-security training. The report found that 64% of Australian CIOs said the number of detected security threats has increased compared to 12 months ago.
The top three cyber-security risks facing organisations in the next five years are spying/ransomware (49%), data abuse/data integrity (49%), and cyber-crime (46%).
According to another report, a significant driver of these issues is learners who have a poor sense of cyber-security who use unsecured private devices for work.