It’s still the case that attaching a sensitive document to an email is the primary way of sharing. I’m guilty of this myself occasionally but I try by default to use authenticated services like Slack/Google Docs/SharePoint…
[…] “The investigation has taken four months and required a highly technical approach to identify the exact amount of customer information in the 3.8 million documents (738 gigabytes of data) stolen from the email accounts,” Service NSW said in an update.
“This rigorous first step surfaced about 500,000 documents which referenced personal information.
“We are now able to focus on providing the best advice for approximately 186,000 customers we’ve identified with data in the breach.”
Service NSW labelled the email compromise as a “criminal attack” that was now the subject of a “NSW Police investigation”.