New Zealand's cybersecurity landscape is fraught with challenges, from high-profile data breaches to subtle supply chain attacks. In this article, we'll explore some of the country's worst cybersecurity incidents, highlighting the importance of robust security measures and the need for constant vigilance. But here's where it gets controversial... Are the government and private companies doing enough to protect sensitive data? And this is the part most people miss... The answer may lie in the details of these incidents and the lessons we can learn from them.
The Manage My Health Hack: A Wake-Up Call
One of the most alarming incidents in recent memory was the Manage My Health hack, where patient data was compromised due to a ransom attack. The hackers threatened to release over 400,000 documents belonging to approximately 126,000 patients unless a substantial ransom was paid. This incident sparked a government review, raising questions about the effectiveness of security measures and the need for improvements.
The Waikato DHB Attack: A Local Catastrophe
Another notorious incident was the Waikato District Health Board (DHB) attack, which paralyzed services at five hospitals in 2021. Hackers brought down the DHB's servers and leaked private data from over 4,000 patients and employees on the dark web. This attack highlighted the vulnerability of local healthcare systems and the importance of robust security measures.
Tonga Health System: A National Crisis
In 2025, Tonga's health system was taken down for nearly a month by hackers demanding $1 million. While the ransom was not paid, the incident underscored the impact of cyberattacks on essential services and the need for international support in restoring critical infrastructure.
The WannaCry Attack: A Global Phenomenon
The WannaCry attack in 2017 was a global phenomenon, affecting over 300,000 computers in more than 150 countries. The attack highlighted the widespread vulnerability of systems and the need for proactive security measures. In New Zealand, the shutdown of Lyttelton Port and significant challenges reported by Counties Manukau DHB underscored the impact of such attacks on critical infrastructure.
Qantas Data Breach: A Corporate Disaster
In mid-2025, New Zealanders were caught up in the Qantas data breach, which affected 5.7 million customers. The breach exposed sensitive information, including customer records and frequent flyer details. While no credit card or personal financial information was believed to have been compromised, the incident underscored the importance of protecting customer data and the potential consequences of a breach.
Mercury IT Attack: A Supply Chain Vulnerability
In 2022, an attack on Mercury IT resulted in the loss of access to health and coronial files. The data, including 14,500 coronial files, 4,000 post-mortem reports, and 5,500 Cardiac and Inherited Disease Registry records, was held by an external provider. This incident highlighted the vulnerability of supply chains and the need for robust security measures to protect sensitive data.
Squirrel Attack: A Supply Chain Vulnerability
Another supply chain attack occurred in 2024, when the mortgage broking and investment firm Squirrel was targeted, exposing the passport or driver's license details of approximately 600 peer-to-peer investors. This incident underscored the importance of securing third-party systems and the potential consequences of a breach.
China Accused of Hacking NZ Parliament: A Political Controversy
In 2024, senior minister Judith Collins revealed that the Parliamentary Service and Parliamentary Counsel Office had been allegedly targeted in 2021 by a group called APT40. While the NCSC contained the activity and removed the actor, the incident raised questions about the security of government networks and the potential involvement of foreign actors.
NZX Attack: A Distributed Denial of Service (DDoS) Incident
In 2020, the New Zealand stock exchange came under repeated DDoS attacks, bringing trading to a halt. Such attacks coordinate large volumes of internet traffic to overwhelm servers and networks. While the impact was significant, the incident highlighted the need for robust security measures to protect critical infrastructure.
CrowdStrike Glitch: An Unintentional IT Meltdown
In mid-2024, a glitch in a security update caused widespread disruption, affecting airlines, healthcare, shipping, finance, TV, and transport networks around the world. While not a deliberate attack, the incident underscored the importance of thorough testing and the potential consequences of a security update gone wrong.
In conclusion, New Zealand's cybersecurity landscape is fraught with challenges, from high-profile data breaches to subtle supply chain attacks. As we've seen, the consequences of these incidents can be far-reaching, affecting not only individuals and businesses but also critical infrastructure and national security. It's crucial for the government, private companies, and individuals to work together to strengthen security measures and protect sensitive data. But here's where it gets controversial... Are the government and private companies doing enough to protect sensitive data? And this is the part most people miss... The answer may lie in the details of these incidents and the lessons we can learn from them.
