Small business , Risk Assessments/Management , Security Strategy, Plan, Budget Australian small businesses lack cyber security plans, research finds May 6, 2026 Share By SC Staff A significant gap exists in cybersecurity readiness among Australian small businesses, with only 40% prioritizing these measures, according to recent research. The majority lack a cyber plan and underestimate their risks, despite the increasing frequency of incidents, as reported by Arn Net. Research from Ipsos, commissioned by Optus, indicates that one in three Australian small businesses have experienced a cyber incident, yet many remain underprepared. Sole traders are particularly vulnerable, with 79% lacking a cyber response plan and 38% taking no action after an incident. Phishing and email scams are the most common attack methods, accounting for 38% of incidents, followed by malware (24%) and impersonation attacks (24%). Common vulnerabilities exploited include reused passwords and weak password hygiene. The Office of the Australian Information Commissioner (OAIC) is increasing scrutiny, with a compliance sweep targeting sectors like property, pharmacies, and licensed venues due to high privacy risks. Small businesses spend an average of only two hours per month on cyber prevention, with some dedicating no time at all, leaving them susceptible to financial loss, productivity decline, and recovery resource drain. Source: Arn Net SC Staff Related Data Security UK ransomware attacks shift to targeted methods, small businesses most affected SC Staff April 23, 2026 Security researchers at SonicWall reported that ransomware actors have moved away from broad, untargeted attacks to more human-operated, "big game hunting" methodologies. Data Security SMBs overlook printer security, leading to data loss SC Staff March 13, 2026 HP's study indicates that 56% of SMBs have reported at least one print-related data loss incident in the past year. Cloud Security SMBs depend on cloud but distrust providers SC Staff March 10, 2026 A survey of 3,000 decision-makers at companies with fewer than 250 employees in Proton's 2026 SMB Cybersecurity Report found that cyber threats remain widespread, with more than one million small businesses hit by attacks last year and 26% reporting a recent serious breach. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms British Standard 7799 Business Continuity Plan (BCP) Business Impact Analysis (BIA) Competitive Intelligence Cost Benefit Analysis Data Custodian Due Care Due Diligence Risk Risk Assessment You can skip this ad in 5 seconds