Our recent survey of Australian CISOs and CTOs looked at account protection controls, planned security measures, and how teams are responding to credential stuffing and residential proxies. Key findings:
-
Multi-Factor Authentication (MFA) Adoption: 76.23% of Australian businesses use MFA, showing broad adoption of a baseline account security control.
-
Bot Protection: Currently implemented by 39.34% of organisations, with an additional 34.65% planning to adopt it.
-
Bot Management Solutions: Cloudflare is the most common bot management provider in the survey, used by 48.24% of respondents.
-
Residential Proxy (Resip) Detection: Only 13.11% of organisations currently use this technology, although many plan to implement it to address residential proxy traffic.
-
Credential Stuffing Concerns: Businesses are planning measures to reduce credential stuffing risk, including bot protection, MFA, and checking credentials against known breaches.
-
Mobile Security Gap: Low adoption of Web Application and API Protection (WAAP) suggests gaps in mobile application security.
-
Executive vs. Engineer Priorities: The survey showed different cybersecurity priorities between executives and engineers.
These findings point to the need for account protection strategies that go beyond MFA and address automated traffic, breached credentials, and residential proxies.
