Please help me fix my code

Data Breach Report January to June 2022

• Executive Summary
• Notifications receive
  • Large Scale Breaches
• Source of Breaches
• Malicious or criminal attacks
• Cyber Incidents
• Huuman errors
• System Faults

---

The Office of the Australian Information Commissioner (OAIC) periodically publishes statistical information about notifications received under the [Notifiable Data Breaches (NDB) scheme to help entities and the public understand privacy risks identified through the scheme. This Report captures notifications made under the NDB scheme from 1 January to 30 June 2022.

Statistical comparisons are to the period 1 July to 31 December 2021 unless otherwise indicated.

Where data breaches affect multiple entities, the OAIC may receive multiple notifications relating to the same incident. Notifications relating to the same incident are counted as a single notification in this report unless otherwise specified.

The source of any given breach is based on information provided by the reporting entity. Where more than one source has been identified or is possible, the dominant or most likely source has been selected. Source of breach categories are defined in the glossary at the end of this report.

Notifications made under the My Health Records Act 2012 are not included as they are subject to specific notification requirements set out in that Act.

Statistics in this report are current as of 30 September 2022. Some data breach notifications are being assessed and adjustments may be made to related statistics. This may affect statistics for the period January to June 2022 published in future reports. Similarly, statistics from before January 2022 in this report may differ from statistics published in previous NDB reports

Executive summary

The NDB scheme was established in February 2018 to improve consumer protection and drive better security standards for protecting personal information. Under the scheme, any organisation or government agency covered by the PrivacyAct 1988that experiences an eligible data breach must notify affected individuals and the OAIC.

The OAIC publishes twice-yearly reports on notifications received under the NDB scheme to track the leading sources of data breaches and highlight emerging issues and areas for ongoing attention by regulated entities.

Illustrative Summary of the Data Breaches between January and June 2022

Key findings for the January to June 2022 reporting period:

• 396 breaches were notified compared to 460 in July to December 2021 (14% decrease).
• Malicious or criminal attack remains the leading source of breaches accounting for 250 notifications (63% of the total), down 1% in number from 253.
• Data breaches resulting from human error accounted for 131 notifications (33% of the total), down 31% in number from 189.
• Health remains the highest reporting sector notifying 20% of breaches, followed by finance (13%)
• Contact information remains the most common type of personal information involved in breaches.
• 91% of breaches affected 5,000 individuals or fewer, while 65% affected 100 people or fewer.
• 71% of entities notified the OAIC within 30 days of becoming aware of an incident.

Information has been sourced from OAICand the NotifiableData Breaches Report January to June 202

TWA Week 2 Prac Class 2 to 4 My Student ID: 19748489