AI Phishing Surge Sparks Cybersecurity Alarm in Australia
▼ Summary
– Yubico’s global survey reveals a significant gap between cybersecurity awareness and actual practices, particularly regarding passwords, MFA, and passkeys.
– Nearly half (46%) of Australian respondents interacted with phishing messages in the past year, with Gen Z being the most susceptible demographic at 62%.
– Most Australians (73%) believe AI has made phishing attempts more successful and sophisticated, leading to personal data exposure like email addresses and phone numbers.
– Only 55% of Australian companies use MFA across all applications, and 41% of employees report never receiving cybersecurity training from their employers.
– Despite low confidence in passwords, they remain the most common authentication method, while adoption of stronger phishing-resistant solutions like device-bound passkeys is still low.
A significant surge in AI-driven phishing attacks is raising serious cybersecurity concerns across Australia, according to new research from Yubico’s Global State of Authentication survey. The study, which gathered responses from 18,000 employed adults across nine nations including 2,000 Australians, highlights a dangerous gap between security awareness and everyday digital habits. With phishing attempts growing more convincing through artificial intelligence, both individuals and organizations face heightened risks that demand stronger protective measures.
The survey examined cybersecurity behaviors in both professional and personal contexts, revealing troubling inconsistencies in how people manage their online safety. Areas like password practices, multi-factor authentication adoption, and the use of passkeys showed a clear divide between what users know they should do and what they actually implement.
Geoff Schomburgk, Yubico’s Vice President for Asia Pacific and Japan, noted that complacency remains a major issue. “There’s a glaring disconnect between awareness and action,” he explained. “Many Australians are still interacting with phishing messages, and organizations have been slow to adopt security best practices. With 46% of local respondents saying they’ve engaged with a phishing message in the past year, it’s clear we need stronger authentication, better education, and decisive action.”
AI is amplifying the threat, making phishing campaigns harder to spot. Nearly three-quarters (73%) of Australians believe phishing has become more successful due to AI, and 82% say these scams have grown more sophisticated. Among those who fell victim, 24% handed over email addresses, 21% provided their full names, and 18% disclosed phone numbers, exposing themselves and their employers to follow-on attacks.
Despite 79% of Australian workers expressing confidence in their organization’s security options, only 55% confirmed that their company uses MFA across all applications and services. An additional 41% reported never receiving cybersecurity training at work, leaving significant gaps in defense.
Key Australian findings from the report include:
46% of respondents admitted to interacting with a phishing message in the last year.
Schomburgk noted that while awareness of stronger authentication tools, such as device-bound passkeys, is rising, adoption remains low. “The good news is people are recognizing more secure options,” he said. “But both individuals and organizations must act now. Modern MFA is no longer optional, it’s essential for protecting against today’s digital threats.”
For complete survey results and actionable security recommendations, readers can access the detailed report overview, review the supporting infographic, and watch the regional video message from Yubico’s Asia Pacific leadership. Additional details about Yubico and its security solutions are also available online.
(Source: ITWire Australia)
