Email security is not set and forget

Email compromise was identified as the most reported cybercrime for businesses, according to the Australian Signals Directorate’s (ASD) Annual Cyber Threat Report 2023–24.

Cybercriminals can send phishing emails or impersonate other businesses to trick you into giving them sensitive information, opening malicious links, and sending money or goods.

The vast majority of email compromise incidents ASD responded to in the last financial year involved compromised accounts or credentials. A common way this compromise happens is via information stealer malware, which cybercriminals use to collect information from a victim’s device.

What can you do?

This June, ASD is reminding Australian small businesses and sole traders that email security is not ‘set and forget’.

Take simple steps to review your email security:

Check your email settings.
Turn on multi-factor authentication (MFA).
Turn on email content filtering.
Train staff to recognise suspicious email activity.

Check out the educational pack for small businesses.

Australian Signals Directorate

Was this page helpful?

Yes

Thanks for sharing your feedback with us.

Why not?

I couldn't find what I was looking for

The layout or style made it hard to read

The information wasn't useful to me

The information was confusing

I had a technical issue

Something else

Provide your feedback below. We can't respond to queries submitted through this form, so please don't include any personal details (maximum 1,500 characters)

Recaptcha validation failed

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Email security is not set and forget

What can you do?

Check out the educational pack for small businesses.

Thanks for sharing your feedback with us.

About us

Quick links

Related Sites

Call us on 13 28 46