Massive Data Breach Hits NSW Online Registry: 9,000+ Files Stolen

A major cybersecurity incident has struck the New South Wales court system, as cybercrime detectives investigate a significant data breach affecting the Department of Communities and Justice (DCJ).

The breach targeted the NSW Online Registry Website (ORW), a critical platform that houses sensitive information related to both civil and criminal cases across the state.

The breach was discovered on Tuesday, March 25, 2025, prompting officers from the State Crime Command’s Cybercrime Squad to initiate an immediate investigation under Strike Force Pardey.

The investigation revealed that approximately 9,000 sensitive court files, including apprehended violence orders and affidavits, were accessed and downloaded by unauthorized parties.

Investigation Ongoing

Cybercrime detectives are working closely with the DCJ to contain and assess the full extent of the breach.

As investigations continue, officials are urging anyone who believes their details may have been compromised to report the incident through the appropriate channels, such as ReportCyber.

The data breach has raised concerns about the security measures in place to protect sensitive court documents.

This incident underscores the need for robust cybersecurity systems to safeguard personal information in the digital age.

In response to the breach, individuals are advised to remain vigilant and monitor their personal and financial information for any suspicious activity. Reporting any potential breaches is crucial to mitigate potential consequences.

Meanwhile, officials are reinforcing security measures to prevent future breaches. The Department of Communities and Justice is collaborating with cybersecurity experts to enhance security protocols and protect sensitive data.

Impact and Future Steps

The breach highlights the ongoing challenges faced by public institutions in safeguarding sensitive information against sophisticated cyber threats.

As technology evolves, so do the methods used by cybercriminals, making it imperative for organizations to stay ahead of these threats with robust security systems and rapid response strategies.

In the coming days, further updates are expected as the investigation unfolds.

The public will be kept informed about any additional measures that may be taken to ensure the integrity of personal data stored within the NSW court system.

For now, the focus remains on containing the breach, identifying those responsible, and bolstering security to prevent similar incidents in the future.

The collaboration between law enforcement and the Department of Communities and Justice is crucial in addressing this challenge and ensuring the continued trust in public institutions.

Are you from SOC/DFIR Teams? – Analyse Malware, Phishing Incidents & get live Access with ANY.RUN -> Start Now for Free.