Rising cybercrime rates in Australia and New Zealand are an escalating concern as cybercriminals aren’t necessarily improving their methods but are taking advantage of cybersecurity gaps. The rise in ransomware attacks stems not from advanced techniques but from the vulnerability of organisations lacking basic defences.

Today’s complex digital ecosystems have created more weak points for attackers to exploit. Ransomware remains a major threat, especially to small and medium-sized enterprises (SMEs) in critical sectors. This highlights serious gaps in cybersecurity preparedness and response.

Resilience is not guaranteed

In Australia, recent changes to cyber laws and policies have been put in place to strengthen data protection requirements, making company directors explicitly responsible for ensuring the security of private client data and implementing robust cybersecurity measures.

However, as companies across ANZ adopt new technologies, they cannot assume their defences are secure simply because they haven’t been breached yet. Ransomware has evolved from a simple tactic into a sophisticated extortion tool, with cybercriminals now stealing sensitive data and threatening to release it unless paid.

Ransomware-as-a-Service (RaaS) has also made it easier for less skilled individuals to launch attacks. This model allows cybercriminals to deploy attacks quickly and precisely, making them harder to defend against.

Adding to this, AI has amplified ransomware’s threat, allowing cybercriminals to analyse large data sets, identify vulnerabilities, and avoid detection. AI-powered ransomware can even adjust ransom demands based on the financial capacity of victims, using bots to negotiate.

Local incidents reveal weaknesses

Recent cyberattacks in Australia and New Zealand underscore the importance of addressing these vulnerabilities.

In 2022, one of Australia’s largest private health insurance providers was hacked, with sensitive health data stolen and ransom demands issued. Similar attacks have happened across the ditch in New Zealand, affecting patient care for weeks. The real human impact in that case was jaw-dropping with New Zealand’s health records and private, in a lot of cases very sensitive information was out in the open, visible online for anyone to see. These attacks even forced surgeries to be postponed.

On a wider region lens, IDC found that 59% of Asia/Pacific enterprises were targeted by ransomware in 2023.

These examples and statistics show the real-world impact and threat of ransomware, especially in industries where disruptions can harm public trust and cause significant operational delays.

Cloud security – a key defence

One critical vulnerability is cloud security. As businesses increasingly shift to cloud-based systems, they must secure the data they store. Poor encryption, weak access controls, and misconfigured cloud settings can expose organisations to ransomware and data breaches.

To safeguard against such threats, companies need robust cloud security measures, including strong encryption, multi-factor authentication, and regular audits. Implementing secure backup strategies, such as immutable backups, ensures data remains protected even if systems are compromised.

In a rapidly evolving cyber landscape, where ransomware and other attacks can unfold in minutes, the ability to quickly access and analyse data ensures that security teams can identify breaches, mitigate risks, and restore compromised systems without delay. This real-time availability also supports continuous monitoring, making it easier to detect unusual activity, implement patches, and safeguard against data loss or corruption. Additionally, cloud-based backups offer immediate recovery options, reducing downtime and limiting the impact of attacks.

Many organisations are unaware of the built-in security features available on their cloud platforms, leaving critical protections underutilised. Features such as immutable storage, egress alerts and advanced encryption, can protect data from ransomware, and unauthorised access. However, without a clear understanding of these tools or how to configure them properly, companies may miss out on vital defences, leaving their cloud environments vulnerable to attack. It’s essential for businesses to fully explore and implement the security features provided by their cloud services to enhance their overall resilience.

Strengthening resilience

Modern backup strategies should prioritise immutable backups—data that cannot be altered or deleted even if compromised. Following the 3-2-1 rule, which calls for three copies of data on two different media types, with one stored off-site, helps organisations recover swiftly from ransomware attacks.

Effective security also relies on collaboration between teams. Misaligned efforts can lead to overlooked vulnerabilities and delayed responses. Multi-factor authentication, identity management, and employee training are crucial in preventing attacks, even when one set of credentials is compromised.

Organisations must stay vigilant, adapt to evolving cyber threats, and invest in resilient cybersecurity measures, including strong cloud security and backup systems, to protect their assets and maintain business continuity.