Staff lacking crucial cybercrime training – report

by Brett Henebery16 Jun 2017
A new report out of the UK shows that one in 10 people responsible for workplace training don’t know if their staff receive any anti-cybercrime guidance.

The report, by training provider, Firebrand Training, found that as a result, more than half a million organisations could be leaving themselves vulnerable to cyberattacks such as malware and ransomware.

According to the research, UK businesses are more likely to conduct routine fire drills twice as often as all-staff cyber drills. This is despite the fact that cyber breaches are 125 times more frequent than office fires.

On average, 22,000 fires occur in UK businesses, but a massive 2.7 million businesses have suffered cyberattacks.

Robert Chapman, co-founder of Firebrand said that in some ways, he was surprised by the “proactivity” of businesses in terms of prevention.

“However, we were also surprised that 20% of businesses only complete cyber drills once a year,” he said.

“Cybercrime is constantly evolving. If you’re testing your systems once a year, and patching up breaches with new safeguards, but then leaving this for another 12 months you’re incredibly vulnerable, as we’ve seen with the NHS attacks.”

Chapman likened this to “expecting cling wrap to be an effective material for dam building.”
The Verizon 2017 Data Breach Investigations Report, released one week before the WannaCry cyberattack, warned that organised criminal groups were escalating their use of ransomware to extort money from victims.

This year’s report saw a 50% increase in ransomware attacks compared to last year.

The latest report comes amid a raft of measures taking place around the world to protect against cyberattacks.

Yesterday, it was announced that the University of Melbourne and Western Australia’s Edith Cowan University (ECU) would receive a $1.9m grant from the Federal Government as part of the Australia-first Academic Centres of Cyber Security Excellence (ACCSE).

The funding, which the two universities will share over a four-year period, will help them deliver enhanced cybersecurity training and produce highly skilled graduates.

In a statement, Minister for Education and Training, Simon Birmingham, said the centres would help meet the unique challenges we face in the digital age by preparing a new generation of graduates to boost the cybersecurity workforce.

“Graduates from the successful centres of excellence will be equipped with the best knowledge to meet the needs of the cyber industry, business, and government,” Minister Birmingham said.

“What's more, the centres will encourage the commercialisation of their cybersecurity research and benefit Australia's small and medium-sized industries.”

Related stories: