OAIC Data Breach Report

Discover which industries were hit the hardest

As cyber-attacks become more frequent and advanced, it is vital for organisations across all industries to ensure they are doing everything they can to prevent data breaches. The Office of the Australian Information Commissioner (OAIC) recently released its July 2018 quarterly data breach report, revealing that the second most common cause of data breaches was human error. Organisations could save up to millions of dollars annually by investing in adequate security protocols and staff training.

The report outlines data breach notifications in the following industries:

• Business/Personal Associations
• Education
• Legal, Accounting & Management
• Finance
• Health Service Providers

Of all the aforementioned industries, the healthcare sector reported the most data breaches for 2018 thus far, with 59% of the reportable breaches resulting from human error.
However, what exactly is ‘human error?’ The OAIC defines human error as, “an unintended action by an individual directly resulting in a data breach.” An example of this is inadvertent disclosure caused by sending a document containing personal information to the incorrect recipient.

Human error makes it easier for other forms of malicious data breaches to take place. IBM estimates that data breaches recorded by healthcare organisations cost them up to $549 (AUD) per lost or stolen record, which is nearly three times higher than the cross-industry average.
Forms of human error data breaches include (but are not limited to) the following:

• Insecure disposal
• Loss of paperwork/data storage device 
• Failure to use BCC when sending emails 
• Unauthorised disclosure (verbal or non-verbal)

While cyber-attacks are complex, how you prepare your organisation and your staff doesn’t have to be. By ensuring your team are aware of security best practices, you can lessen the possibility of data breaches caused by human error.

Subnet offers half-day training sessions where a member of our team will train your staff, inform them of the latest forms of attacks and how they can protect themselves against them. They will also receive training that will enable them to reduce the likelihood of a data breach due to human error. Our team can advise you on how to set the best internal processes and procedures, providing you with the best possible options for your organisation. 

It is essential to remember that cyber threats continue to evolve at a rapid rate; thus, it is crucial to adopt an adaptive security solution that can protect your organisation in the long run.

Fill in the form to download the OAIC’s quarterly data breach report.