More than 10 million people were the victims of a single massive data breach, according to an Australian report, Notifiable Data Breaches Quarterly Statistics Report.
Key findings include:
- 215 notifications of data breaches from January 31, 2019 to March 31, 2019.
- 35 percent of those data breaches were due to human error.
- 61 percent of them were due to malicious attacks or criminal attacks. 66 percent involved cyber incidents such as phishing, malware or ransomware, brute-force attacks, compromised or stolen credentials. Theft of paperwork or data storage devices was another source of malicious or criminal attacks (14 percent). Other sources included actions taken by a rogue employee or insider threat (15 percent), as well as social engineering or impersonation (5 percent).
- 4 percent of the data breaches were due to system failures.
The kind of personal information divulged by number of notifications of data breaches:
- Contact information - 186
- Financial details - 98
- Identity information - 55
- Health information - 63
- TFN - 36
- Other sensitive information - 25
The top five sectors with data breaches notifications (by number of notifications) include:
- Healthcare - 58
- Finance - 27
- Legal, accounting and management services -23
- Education - 19
- Retail - 11