Home Security Health services providers again top list of reported breaches
Health services providers again top list of reported breaches Pixabay

Health services providers continue to top the industry sectors reporting breaches under the Notifiable Data Breaches act.

Two hundred and sixty-two data breaches involving the leaking of personal information were reported to the Office of the Australian Information Commissioner during the final quarter of 2018, with 54 involving private health service providers.

In a statement released on Thursday, the OAIC said the leading cause for the breaches was malicious or criminal attack (168) followed by human error (85) and system error (9).

Among the 168 breaches caused by malicious or criminal attack, most involved the use of compromised credentials which were obtained by the use of phishing emails or brute-force attacks.

The OAIC said key takeaways from the report were:

  • Two hundred and sixty-two data breaches were notified to affected individuals and the Office of the Australian Information Commissioner, compared to 245 the previous quarter;
  • Sixty-four percent were attributed to malicious or criminal attacks, compared to 57% the previous quarter;
  • Thirty-three percent were attributed to human error, compared to 37% the previous quarter;
  • Three percent were attributed to system faults, compared to 6% the previous quarter; and
  • Sixty percent involved the personal information of 100 or fewer individuals, compared to 63% the previous quarter.

The top five sectors to report breaches were:

  • Private health service providers: 54
  • Finance: 40
  • Legal, accounting and management services: 23
  • Private education providers: 21
  • Mining and manufacturing: 12

Australian Information Commissioner and Privacy Commissioner Angelene Falk said: "Preventing data breaches and improving cyber security must be a primary concern for any organisation entrusted with people’s personal information.

“Employees need to be made aware of the common tricks used by cyber criminals to steal usernames and passwords.

“The OAIC works with the Australian Cyber Security Centre to provide prevention strategies for organisations, including regularly resetting and not reusing passwords.

“If a data breach occurs, early notification can help anyone who is affected take action to prevent harm.

“By changing passwords, checking your credit report, and looking out for scams using your personal information, you can help minimise the harm that can result from a data breach.”

The full report for the quarter is here; iTWire's reports on the three previous quarters are here, here and here.

FREE SEMINAR

Site24x7 Seminars

Deliver Better User Experience in Today's Era of Digital Transformation

Some IT problems are better solved from the cloud

Join us as we discuss how DevOps in combination with AIOps can assure a seamless user experience, and assist you in monitoring all your individual IT components—including your websites, services, network infrastructure, and private or public clouds—from a single, cloud-based dashboard.

Sydney 7th May 2019

Melbourne 09 May 2019

Don’t miss out! Register Today!

REGISTER HERE!

LEARN HOW TO REDUCE YOUR RISK OF A CYBER ATTACK

Australia is a cyber espionage hot spot.

As we automate, script and move to the cloud, more and more businesses are reliant on infrastructure that has the high potential to be exposed to risk.

It only takes one awry email to expose an accounts’ payable process, and for cyber attackers to cost a business thousands of dollars.

In the free white paper ‘6 Steps to Improve your Business Cyber Security’ you’ll learn some simple steps you should be taking to prevent devastating and malicious cyber attacks from destroying your business.

Cyber security can no longer be ignored, in this white paper you’ll learn:

· How does business security get breached?
· What can it cost to get it wrong?
· 6 actionable tips

DOWNLOAD NOW!

Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the sitecame into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.

 

Popular News

 

Telecommunications

 

Guest Opinion

 

Sponsored News

 

 

 

 

Connect