Cyber incidents continue to escalate in both scale and impact across Australia, highlighting why cyber risk is now a mainstream business issue — not just an IT concern.

Recent analysis shows that Australia recorded an estimated 1.1 million leaked user accounts in the first quarter of 2026, ranking 15th globally for breach volume. These incidents contribute to a growing pool of compromised personal information, with an estimated over 600 million Australian personal records exposed since 2004.

Globally, the situation is accelerating. More than 210 million accounts were breached worldwide in Q1 2026 alone, which is:

• Three times higher than the same period in 2025, and
• 22% higher than the previous quarter (Q4 2025)

This trend reinforces that cyber incidents are increasing in frequency, scale and sophistication.

What data is being exposed?

The most commonly compromised data includes:

• Email addresses and passwords
• Names and contact details
• Phone numbers and physical addresses
• Payment card information and government identifiers

Much of this aligns directly with the information businesses routinely collect for customer onboarding, invoicing, payroll, and insurance purposes. Once exposed, this data can be reused by criminals for years, enabling fraud, invoice redirection scams, and identity theft long after the original breach.

AI Adoption Is Expanding the Risk

The rapid adoption of artificial intelligence is also contributing to a broader cyber risk landscape. In 2025, more than 20% of businesses reported using AI tools, up from less than 9% just two years earlier.

While AI can improve efficiency, it also:

• Increases the volume of data businesses store
• Expands the number of connected systems and platforms
• Creates more potential points of failure

As businesses integrate AI into operations, there are more systems to secure and more opportunities for error, making cyber incidents more likely if controls don’t keep pace.

What Australian regulators are seeing

Australian regulatory data confirms that cyber incidents remain a persistent issue:

• 532 Notifiable Data Breaches were reported to the Office of the Australian Information Commissioner (OAIC) in the first half of 2025
• Malicious or criminal attacks accounted for 59% of incidents
• Each cyber incident affected over 10,000 individuals on average

The most impacted sectors were:

• Health
• Financial services (including insurers and brokers)
• Government agencies

Importantly, human error continues to rise as a contributing factor, underscoring that cyber risk is as much about people and processes as technology.

The estimated average cost of a data breach globally exceeds $4 million, once investigation, downtime, legal, regulatory and reputational costs are considered.

Why Cyber Insurance Matters

Cyber insurance is no longer just about ransomware. It plays a critical role in managing the real‑world consequences of modern cyber incidents.

What cyber cover typically responds to:

• Forensic investigation and incident response costs
• Legal advice and regulatory reporting obligations
• Ransomware and extortion events (where applicable)
• Email compromise and invoice‑redirection scams
• Data recovery, system restoration and business interruption
• Notification and credit‑monitoring costs for affected individuals

Under Australian law, businesses may be required to investigate and report cyber incidents even where no data is ultimately stolen. For small and medium businesses, the cost of investigation and reporting alone can easily run into tens of thousands of dollars, before any financial loss is considered.

What we are seeing in real claims:

Across the construction and trade sectors in particular, common cyber claims now include:

• Fake supplier invoices following email compromise
• Hackers intercepting and altering legitimate invoices
• Ransomware installed despite backups being in place
• Overseas equipment purchases diverted to fraudulent bank accounts

In cases where cyber insurance was not in place, losses have been absorbed entirely by the business — in some instances exceeding hundreds of thousands of dollars and directly impacting operations, cash flow, and growth plans.

Key takeaway for clients

Cyber incidents are no longer rare or extreme events. They are:

• Increasing year on year
• Affecting businesses of all sizes
• Often driven by simple email compromise rather than complex hacking

Cyber insurance won’t prevent an incident from occurring — but it can be the difference between a manageable disruption and a material financial loss.

If you’d like to discuss whether cyber cover is appropriate for your business, or what level of protection makes sense given your operations, we’re here to help.