New Zealand organisations should consider the risk of third-party data breaches to their own cyber security. Where a data breach includes account information or user credentials, malicious cyber actors can leverage this information to conduct password attacks and targeted social engineering. If you suspect your organisation is affected by a third-party data breach, the NCSC recommends you consider the mitigations contained in this guidance to address the risks.
Download NCSC Guidance: Responding to Third-Party Data Breaches [PDF, 347 KB]