Data breaches 2019 are expensive


Organisation have had it easy for some time. Data breaches are increasingly being addressed with penalties backed by GDPR legislation. Some noted fines are:

  • British Airways was fined $328M.
  • Facebook fined $5B for Cambridge Analytica data theft.
  • $99M for Marriott Hotel

In Australia, the OAIC reports that it received 812 privacy complaints in 2018.

EntityRecordsOrganization typeMethod
2019 Bulgarian revenue agency hackover 5,000,000governmenthacked
Capital One106,000,000financialhacked
Desjardins2,900,000financialinside job
Facebook540,000,000social networkpoor security
Facebook1,500,000social networkaccidentally uploaded
First American Corporation885,000,000financial service companypoor security
Health Sciences Authority (Singapore)808,000healthcarepoor security
Justdial100,000,000local searchunprotected api
Ministry of Health (Singapore)14,200healthcarepoor security/inside job
Quest Diagnostics11,900,000Clinical Laboratorypoor security
Truecaller299,055,819Telephone directoryunknown
Woodruff Arts Centerunknownarts grouppoor security
Australian National University19 years of dataacademichacked

Here are a few links to fines noted.