- Cybersecurity
- Online Safety
- Digital Fraud
New AIC report reveals alarming trend: over 40% of Australian cybercrime victims experience multiple attack types within 12 months. Fraud victims face highest re-targeting risk at 80%.
Australian Cybercrime Victims Face Repeated Targeting
A new report from the Australian Institute of Criminology (AIC) has uncovered a concerning trend: more than 40 per cent of Australians who fall victim to cybercrime experience multiple types of attacks within a single year. Particularly alarming is the finding that those who have been targeted by fraud and scams face the highest risk of subsequent attacks.
The Cybercrime in Australia 2024 report examined four key cybercrime categories: online abuse and harassment, malware, identity crime and misuse, and fraud and scams. The research revealed that 42.1 per cent of victims were targeted across two or more categories within a year, whilst 6.6 per cent experienced all four types of cybercrime.
The Dangerous Connection Between Different Cybercrimes
AFP Cyber Commander Graeme Marshall emphasised that these findings highlight the urgent need for ongoing community vigilance. According to Commander Marshall, individuals who fall victim to one type of cybercrime often find themselves at higher risk of being targeted in different ways.
Cybercriminals do not simply move on after one attack. When they identify a vulnerability such as a weak password, outdated software, or a compromised email account, they return repeatedly, often employing different tactics. Someone who loses personal information to an online scam may subsequently be targeted with identity fraud and phishing attempts.
The report indicates that fraud and scam victims are most likely to suffer further attacks, with 80 per cent encountering another type of cybercrime within a year. This statistic is particularly alarming and demonstrates the critical importance of protecting one's information following an initial attack.
Severe Impacts of Poly-Victimisation
The research also revealed a clear correlation between poly-victimisation, defined as experiencing multiple distinct types of cybercrime, and the severity of harm suffered. Victims of three or more types were three times more likely to report financial, legal, or health impacts compared with those experiencing a single type of cybercrime.
Regarding practical impacts, 57.8 per cent of three-type victims and 63.9 per cent of four-type victims reported such consequences, compared with just 31 per cent amongst single-type victims. Social impacts also increased significantly, from 20.2 per cent for single-type victims to 49.7 per cent for those experiencing all four categories of cybercrime.
Young Australians Most Vulnerable
AIC Deputy Director Rick Brown noted that poly-victimisation was especially prevalent amongst Australians aged 18 to 34 years. He emphasised the critical importance of community education regarding prevention strategies. Victims who seek support are more likely to adopt safety measures that prevent future attacks.
The AFP and AIC continue to collaborate with law enforcement agencies, government bodies, industry partners, and the public to disrupt cybercriminal networks and equip Australians with the tools necessary to protect themselves. Beyond financial losses, victims often face time-consuming recovery processes, emotional distress, and the risk of further exploitation by fraudulent recovery agents.
Essential Prevention Measures
Commander Marshall urged Australians to prioritise prevention, particularly during Cyber Security Awareness Month. He outlined three crucial recommendations that individuals should implement immediately.
Firstly, installing software updates promptly is essential to keep devices secure. Regular security patches serve as the first line of defence against malware and known vulnerabilities. Secondly, using unique and strong passphrases for all accounts is vital. Individuals should avoid reusing the same password across multiple services. Thirdly, enabling multi-factor authentication wherever possible adds a critical layer of protection to online accounts.
The Importance of Ongoing Vigilance
These crimes are interconnected, and their impacts can be financial, emotional, and deeply personal. Evidence demonstrates that cybercriminals are becoming increasingly sophisticated and organised, utilising information from one attack to facilitate subsequent ones.
Australians must recognise that becoming a victim once does not mean the danger has passed. In fact, this may mark the beginning of a series of targeted attacks. Maintaining good cybersecurity habits, staying informed about emerging threats, and seeking support when necessary are crucial steps in protecting oneself in today's digital environment.