Australians just can't get a break! Rallies, earthquakes and record-breaking cybercrime.

It seems that Australians can't get a break this year! In the last few weeks, Melbourne has surpassed Buenos Aires as the most locked down city in the world - NSW and Victoria have seen record COVID cases - our media has been inundated with coverage of unprecedented anti-lockdown rallies - and to top it off, we saw a historical earthquake impacting Sydney, Victoria, Canberra and Adelaide.

It's one thing after the next, and keeping true to the spirit of recurrent 'post-2020' catastrophes, Scamwatch has recently released an alarming newsletter detailing financial damages in excess of $211 million from reported cybercrime this year.

In comparison to last year, 2021 is seeing an 89 per cent increase in reported losses to cybercriminal scams, and has exceeded the total figure of $175.6 million reported for the entirety of 2020.

Comparison from 2020 - 2021 (Q1, Q2, Q3)

Furthermore, these figures only represent financial losses reported to Scamwatch. Later analysis in the ACCC's Targeting Scams report suggested that the financial loss in 2020 was significantly higher - totalling $851 million. This report not only compiled information from Scamwatch reports, but also data from ReportCyber, other government agencies and a number of banks and financial intermediaries.

If a similar increase can be expected for 2021s financial losses in the next Targeting Scams report, we can easily anticipate damages in excess of one billion for the first time in the reports' history.

So what's driving these damages?

Only a few weeks ago, it was revealed that Australians are the the most likely to fall victim to ransomware attacks, but it's no single thing that's contributing to these figures.

In addition to the constant incline of phishing and smishing occurring across the globe, 2021 is showing a significant spike in both computer takeover attacks and a wide array of increasingly popular mobile phone scams.

What do these attacks look like in action?

Computer takeover scams: Computer takeover scams are some of the longest-running and most well known types of cyber attack, and they're more popular than ever. In short, they involve an attacker using viruses, phishing or social engineering to gain remote control of a computer or device, allowing them to steal data or gain malicious access to confidential systems.

Mobile Phone Scams: This involves the malicious use of malware and remote-control apps to either control or eavesdrop on a victim's mobile device. This enables the attacker to not only steal critical information, but surpass critical security features such as two-factor for subsequent attacks against the business at large.

Phishing and Smishing scams: At this point, phishing is a very well-known term for anyone who's undertaken basic awareness training - however - it's still on an incline in Australia. Phishing and Smishing involves sending fraudulent online or SMS communications to ultimately gain illegitimate access to data, systems or resources. It's the bread-and-butter of cybercrime, and accounts for nearly one-third of all cybersecurity breaches.

Naturally, this only scratches the surface of the current threat landscape in Australia. But rather than ending this article on more doomsaying, here are a few security measures that you and your colleagues can take to stay protected in these trying times:

• Stay aware and look out for red-flags: Whether it's a fake email address, dangerous link, or email being a bit too pushy in their request for payment details, there are many warning signs you can spot in a typical scam.

Use online resources to familiarise yourself with these warning signs and chat with your colleagues about experiences they've had with phishing or online scams in the past. The more awareness in the workplace, the less likely that you'll fall victim to common cybercriminal methods.

• Use the tools available: In the same vein that we use masks, sanitisers and contact-tracing to reduce the risk of falling ill, there are a number of tools available to stay cybersafe as well. These tools not only make cybersecurity easier, but to also protect us where human awareness and firewalls can't.

Tools such as two-factor, password managers and automated updates can offer that extra protection that can't be found or maintained otherwise.

• Standardise your workplace practices: While individual awareness and cybersafety is important, It's equally crucial that the workplace is moving as a unit in their efforts against cybercrime. If one person has a strong password, but everyone else is using the same password as their personal Facebook accounts, a data breach is bound to occur.

This is why workplace security policies are essential. Set up password requirements, VPN access and standardised security measures for all work activity in the organisation.

Not sure about the next steps to take for your cybersecurity? Visit?cyberaware.com?for key safety tips and takeaways.