The Notifiable Data Breaches (NDB) scheme stipulates that an organisation must notify affected individuals and the Office of the Australian Information Commissioner (OAIC) when a data breach involving personal information is likely to result in serious harm.
The OAIC has reported on notifications received under the NDB scheme from 1 Jan. 2020 to 30 June 2020. We look at the reported breaches relating to cyber incidents, which highlight the growing risks from ransomware attacks.
Cyber incidents reported
Cyber incidents were the largest source of malicious and criminal attacks during the reporting period, with the OAIC receiving 218 notifications. This represented a slight decrease compared to the previous six months, where 225 cyber incidents were reported.
Phishing, malware, ransomware, brute-force attack and compromised or stolen credentials were the main sources of the data breaches: