The second annual Chubb SME Cyber Preparedness Report - ‘Ignorance is Risk’, revealed that nearly half (47%) of Small and Medium Enterprises (SMEs) in Australia are unaware of their cyber reporting obligations under the Notifiable Data Breaches (NDB) scheme introduced in February 2018.

One in two (49%) SMEs said they had been the victim of a cyber incident. Rather than continuing to be vigilant, the findings suggest that SMEs have become overly confident when it comes to their cyber risk preparedness, with one in three (32%) senior leaders assuming their businesses will never experience a cyber incident.

Key Findings

SMEs were generally unclear about the type of data breaches that required notification under the NDB scheme - just 43% knew that “an employee browsing sensitive customer records without any legitimate purpose” is a notifiable breach.

The most common incidents in the past 12 months were:

  • phishing compromises (21%),
  • data loss (15%)
  • business interruption as a result of system malfunctions or technical faults (13%)

Close to half (49%) of SMEs do not have a data breach response plan, while 79% are confident they can overcome a breach by sophisticated hackers within 24 hours.




Only 27% of SMEs have cyber risk insurance.
Learn More: Cyber Insurance
Explore how Chubb can help protect your business from cyber risks.
Explore how Chubb can help protect your business from cyber risks.

This content is brought to you by Chubb Insurance Australia Limited (“Chubb”) as a convenience to readers and is not intended to constitute advice (professional or otherwise) or recommendations upon which a reader may rely. Any references to insurance cover are general in nature only and may not suit your particular circumstances. Chubb does not take into account your personal objectives, financial situation or needs and any insurance cover referred to is subject to the terms, conditions and exclusions set out in the relevant policy wording. Please obtain and read carefully the relevant insurance policy before deciding to acquire any insurance product. A policy wording can be obtained at www.chubb.com/au, through your broker or by contacting any of the Chubb offices. Chubb makes no warranty or guarantee about the accuracy, completeness, or adequacy of the content. Readers relying on any content do so at their own risk. It is the responsibility of the reader to evaluate the quality and accuracy of the content. Reference in this content (if any) to any specific commercial product, process, or service, and links from this content to other third party websites, do not constitute or imply an endorsement or recommendation by Chubb and shall not be used for advertising or service/product endorsement purposes. ©2020 Chubb Insurance Australia Limited ABN: 23 001 642 020 AFSL: 239687. Chubb®, its logos, and Chubb.Insured.SM are protected trademarks of Chubb.

Have questions?

Contact a broker today.

Insights & Resources

We keep you informed – and your business protected – with these helpful articles.

Cyber
Cyber Case Studies for SMEs
Understanding how your business could be affected by a cyberattack and preparing an incident response plan could save you from financial ru
Small Business
Why SMEs Need Insurance to be Sustainable
Small and medium enterprises (SMEs) across the region have experienced unprecedented growth in recent years, accounting for 96 percent of f