Image for post
Image for post

Two out of three small business owners believe a cyberattack to their business is unlikely, but in reality, the same proportion of businesses has been victims of cyber attacks, according to Keeper Security. The direct consequences of a cyberattack is disruption of your business, loss of productivity and revenue, which may lead to the loss of business reputation, the loss of existing and future clients and unwanted media attention.

Therefore, it is critical to keep your small business secure from cyber attacks, but how? With the following three simple measures, you can quickly improve the risk profile of your business.

Enable two-factor authentication

There is a lot of confusing and often contradicting advice about password security. While some believe a password should be complex (P@ssw0rd1), others reckon it must be long and memorable (CorrectHorseBatteryStaple) instead. The collective wisdom is to change passwords regularly, and experts suggest a password should be unique. …

How your business can benefit from Office 365 and G Suite

Image for post
Image for post

Australian small businesses are the most likely to be targeted by scammers — according to the Australian Competition and Consumer Commission (ACCC). The regulator reports a sudden increase of email-based scams (also known as ‘Business email compromise’ scams) contributing $3.8m extra to the losses reported to Scamwatch in 2018.

According to the ACCC, any organisation managing money via bank accounts is a potential target cyber scams such as email-based attacks. The good news is that Australian businesses can avoid these losses with professional email solutions with built-in protection from the most common scams.

In the following article, we overview the security and productivity benefits of the two most popular business-grade email platforms (Office 365, G Suite) and explain how these solutions can protect your company from cyber scams. …

How a well-kept email service leaves a good impression of your business?

Image for post
Image for post

As a business owner, it is crucial to project a positive image of your brand. Your customers or clients often decide whether to go in business with you by superficial observations of your company. For example, when your business emails are coming from personal email accounts (e.g., or they are continuously flagged as spam, it does not give the best impression of your products or services.

In a competitive environment, it is essential to maintain a professional image to your customers, suppliers, and even to your competition. …

Image for post
Image for post

Why is it so that SMBs are so vulnerable to technology issues? Unforeseen events like data glitches, ransomware attacks and system crashes can lead to significant problems threatening the mere existence of your company.

In the following article, we explain what the leading IT and cybersecurity risks of any small business are, and how a managed IT services provider can help business owners address them.

Lack of IT Strategy

Tiny IT budgets and the lack of experience often leaves small businesses without an adequate IT strategy. Why is planning so important? …

Image for post
Image for post

IT outsourcing is an ever-increasing practice within the professional services sector. If your business is spending too many resources on managing computers, email accounts, servers, printers, and telephones, it is time to consider getting external help from the professionals.

Since managing an IT department can be a daunting task, a Managed IT Services Provider (MSP) can relieve your business from the stressful experience of dealing with technology problems.

The practice of outsourcing allows small business owners to focus on their core business areas instead of burning their valuable resources with resolving IT issues. …

Managed IT Service Providers and You

Image for post
Image for post

Information Technology, or IT, can increase a law practice’s productivity, enable higher quality services and facilitate client introductions and engagement.

It is imperative, however, that law practices — and small businesses in general — are aware of the inherent risks associated with IT, as financial and reputational damage due to hacking, data loss and other adverse events has put some legal practices out of business.

For example, if your practice relies on email for communication, your business is potentially exposed to phishing, business email compromise fraud, payment redirection scams and ransomware. …

Learn how you can deliver phishing awareness courses with a long-lasting effect on the security posture of your company

Image for post
Image for post

Ever wondered how you can deliver security awareness training to staff in your organisation that they will love? In this article, we are revealing the techniques we find useful in our training sessions which should help you get started with your first phishing awareness training session for your organisation.

Iron Bastion delivers tailored phishing awareness training to businesses in Australia to raise awareness around phishing and social engineering. Our experience has gained us some insights into and how raise awareness in organisations in effective, fun and informative ways.

Why Phishing Needs Special Attention

Phishing is the foot in the door to an organisation and usually the initial step in payment redirection scams and Business Email Compromise (BEC) fraud. Cybercriminals see small businesses as low hanging fruit because they lack dedicated IT security personnel, immature and ad-hoc business process and staff who do not have the training or experience to deal with computer-based fraud. …

A practical guide for protecting your organisation from email fraud

Image for post
Image for post

The recent Notifiable Data Breaches Quarterly Statistics Report states that phishing is the primary cause (57%) of data breaches, with legal services being in the top 3 affected industries. The reason behind these staggering number is because cybercriminals target legal services with email-based attacks known as phishing of which the primary goal is to defraud legal practices in schemes known as Business Email Compromise (BEC).

How Phishing and BEC Fraud Go Hand in Hand

A recent Telstra Security Report found that the most common cybersecurity threat in Australia is phishing, with reports of phishing attacks increasing by 1,178% in 2017 over the previous year.

A cyber attack can mean you are defrauded, have your data held to a ransom, have you and your clients’ confidential information stolen and sold on the dark web, or have all of your emails and documents maliciously deleted, permanently encrypted, or made public. The cold, hard numbers show that Australian businesses are losing thousands of dollars every day due to BEC fraud. …

A small island is playing a big role in cyber crime

Image for post
Image for post

Phishing is one of the main reasons why Australian businesses are hacked. So what does an exotic paradise in the middle of the Indian Ocean have to do with global cyber crime? We explain how Cocos (Keeling) Islands enables criminals to defraud organisations and individuals worldwide.

Phishing Campaigns Require Domain Names and Web Hosting

For every successful phishing email campaign, criminals require a domain name for sending emails and hosting the associated services such as fake login pages.

Probably everyone has seen a perfect clone of the Office 365 login page that looks like the genuine one at Microsoft. Often, the only difference between the fake and real one is the address in the URL bar of the web browser. Apart from that, everything else looks perfectly the same. …

Upcoming hacker and infosec events in Australia

Image for post
Image for post

Are you a hacker or an information security professional looking for conferences down under? Our non-comprehensive list features the major cyber events Australia has to offer in 2019.


BSides Melbourne

Melbourne, VIC


BSides Melbourne is a community-driven event, 100% volunteer-run put on by and for the community. BSides is a conference that provides a platform for first-time speakers, students, new and experienced professionals an environment to present their work in a friendly and welcoming environment.


BSides Canberra

Canberra, ACT


BSides Canberra is the largest hacker con in Australia! Each BSides is a community-driven framework for building events for and by information security community members. The goal is to expand the spectrum of conversation beyond the traditional confines of space and time. It creates opportunities for individuals to both present and participate in an intimate atmosphere that encourages collaboration. It is an intense event with discussions, demos, and interaction from participants. …


Gabor Szathmari

Cybersecurity expert and digital privacy enthusiast

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store