This is a list of Australian organisations reported by media to have been a victim of cybercrime, i.e. where sensitive data was stolen and/or held for ransom.
​
This list represents only the visible portion of a much larger problem because it is only the ones we know about.  Australian Government statistics suggest that more than 3,000 small and medium-sized businesses report serious cybersecurity incidents each year. However, the true number will be higher due to widespread underreporting. (see this article)


Please email contact@holisticyber.au if you know of any Australian organisations that have been breached since 1-Jan-2025 but are not yet listed here.