Many companies are unprepared for rising threats from sophisticated and disruptive cyber crimes, Small Business and Family Enterprise Ombudsman Kate Carnell warns.

She says the survey by cyber security firm Norton SMB shows 19% of respondents have experienced a cyber attack, while 24% of Australian SMEs have no internet security solution.

“Small business owners need to accept responsibility for their own cyber security, just as they would for the physical security of themselves, their staff and their property,” she told a security conference in Sydney last week. “The lack of awareness regarding cyber security is one of the biggest threats facing small business operators today.”

Ms Carnell says small business operators often feel helpless when they report a cyber crime or seek assistance or information, but positive steps are being taken.

A budget initiative this year provides $15 million for a small business cyber-security program, with grants available for security testing by approved service providers.

“Just about every business with a physical shopfront has an alarm and takes security precautions, but not every business is aware of cyber security and many are sadly at risk of attack,” Ms Carnell said.

“Small businesses need to be vigilant and take sensible precautions. Authorities need to be agile and supportive.”