Cybersecurity should not be a set and forget function for businesses and we recommend you check your security monthly. Throughout 2021–22, one cybercrime was reported every 7 minutes to the Australian Cyber Security Centre (ACSC). To avoid being a target for these criminals, implement these 4 simple steps:

1. Don’t compromise your device/s. Install updates for your devices and software. Regular updates ensure you have the latest security in place. You can turn on automatic updatesExternal Link so future updates are made as soon as they’re available.
2. Turn on multi-factor authenticationExternal Link (MFA) to protect your valuable information and accounts from criminals. MFA options include an authenticator app, physical token, email or SMS.
3. Back up your files regularlyExternal Link. Hardware failure, theft, or a virus could result in the loss of critical business information. Recovering data can be expensive and sometimes impossible.
4. Change your password to a passphraseExternal Link as they’re more secure. Passphrases use 4 or more random words and tend to be more unique, longer in length and less predictable than a password. You can even use a password manager to help you generate or store passphrases.

Cybercrime can be costly for businesses, but there are resources for businessExternal Link to help you improve the cyber security of your business and the cyber practices of your staff.

You can also use the Exercise in a Box toolExternal Link to develop and test your business’s cyber threat response and understand where cyber practices in your business can be improved.

Last modified: 12 Oct 2023 – QC 73356 – https://www.ato.gov.au/Business/Small-business-newsroom/General/Cyber-security—don-t-set-and-forget/?SmallBusNewsroomLanding