Hacked off with those stupid people who get into your IT system and cause chaos? According to IT consultants Computer Sciences Corporation it’s probably your own fault. A survey of Australian businesses found 40% of medium to large businesses have no formal written IT security policy.

Of those surveyed, 55% have insufficient resources to detect attacks and 34% spend less than $10,000 a year on IT systems security, according to Kim Valois, Director of CSC’s global information security services organisation in Australia.

She said companies that don’t invest in IT systems due to the upfront cost should consider the much greater cost to their business if a security breach occurs. “These companies are being increasingly exposed to both internal as well as external threats and should seriously consider introducing security protection that features adequate depth of defence,” she said.