Australia has reported an unprecedented spike in data breaches, prompting serious concerns from regulatory authorities about the evolving threats.
The Office of the Australian Information Commissioner (OAIC) disclosed on Tuesday that businesses and government agencies reported a staggering 1,113 data breaches in 2024, marking a 25 percent increase compared to the previous year.
This figure represents the highest annual total since the implementation of mandatory data breach notification protocols in 2018.
Australian Privacy Commissioner Carly Kind remarked, “The trends we are witnessing indicate that the risk posed by data breaches, particularly from malicious entities, is unlikely to decline, making the risks to Australians increasingly significant.”
She emphasized the necessity for both businesses and government agencies to enhance their privacy and security measures to remain effective in this evolving landscape.
Data Analysis and Trends
The OAIC’s recent report focused on breaches reported from July to December 2024, revealing 595 incidents—a 15 percent increase from the earlier six-month period.
Malicious or criminal attacks accounted for 69 percent of these breaches, while human error led to 29 percent, and system faults constituted 2 percent.
Most reported breaches affected fewer than 5,000 individuals, yet two incidents compromised data for between 500,000 and 1 million individuals.
Annan Boag, general manager of regulatory intelligence and strategy at the OAIC, highlighted that the data reflects the ongoing information security challenges Australia has faced since the inception of breach reporting in 2018.
“Cyber threats are becoming increasingly sophisticated, and even organizations with robust defenses may fall victim to breaches,” he stated.
The report underscores that the most frequently compromised types of personal information were contact details, identity information, financial data, health records, and tax file numbers.
The health sector reported the highest number of breaches, followed closely by government, finance, legal and accounting services, and retail.
Professor Toby Murray from the University of Melbourne noted that the trends are consistent with the increase in malicious activities and data theft. “Businesses are collecting more data than ever,” he explained, highlighting that the growing value of data makes it a target for cybercriminals.
He added that the rise in reported breaches could be seen as positive; it reflects increased detection and awareness of cybersecurity issues compared to previous years.
Challenges in the Health Sector
Murray pointed to the complexities in the health service sector that contribute to the high number of breaches. “Healthcare data is often highly sensitive and spread across various systems,” he mentioned. “Ensuring these systems are secure and work cohesively presents a significant challenge, particularly when managing diverse data types in a critical field like health.”
Once data is stolen, criminals often resort to ransom tactics, demanding payment from the affected organizations to regain access to their compromised information.
Cybersecurity Recommendations for Businesses
Although organizations bear the brunt of responsibility for protecting data, individuals can take vital steps to enhance their cybersecurity. Implementing two-factor authentication for online accounts is one practical measure recommended by experts like Murray.
Furthermore, individuals should refrain from reusing passwords across multiple sites. “Using distinct logins can greatly minimize the risks associated with compromised passwords,” he advised.
Stay informed with the latest updates from SBS News.
