November 1, 2018
The Australian Information and Privacy Commissioner Angelene Falk has discussed the latest quarterly statistics report on the Notifiable Data Breaches scheme for the July-September period at the sold-out iappANZ annual summit in Melbourne.
The Office of the Australian Information Commissioner (OAIC) received 245 data breach reports for the quarter, three more than the previous quarter.
The majority of breaches (80) affected between 100-1,000 people. Two breaches affected 100,000-250,000 people.
Human error was the main source for data breaches in what continues to be the most heavily breached sector – health services. The health services sector reported 45 breaches, with 25 of these the result of human error.
However malicious or criminal attacks remained the source of the majority of data breaches overall. Phishing attacks were the most common form of malicious attacks ,accounting for 50%, an increase from 29% the previous quarter. Phishing attacks were also the source of 20% of all reported breaches.
The prevalence of human error and the increase in successful phishing attacks highlight the need for greater cyber resilience awareness and education within impacted organisations.
Professor David Lacey, the Managing Director of IDCARE, will be presenting a sold-out workshop on data breach response services at the summit.