The number of reported data breaches is rising, according to the latest quarterly report from the Office of the Australian Information Commissioner.

Some 262 breaches involving personal information were reported to the office in fourth quarter of last year, up from 245 the preceding quarter.

Criminal attacks were up, with 64% of breaches attributed to malicious intent compared with 57% the preceding quarter.

Fifty-four breaches involved private health service providers, 40 were on financial organisations and 23 on accounting, legal and management companies. Private education companies and mining and manufacturing groups made up the rest.

About 70% of data breaches in the finance sector were malicious. Most criminal attacks involved compromised user names and passwords.

However, people are being more careful: 33% of data breaches were attributed to human error, compared with 37% the preceding quarter.

Sixty-three attacks affected 100-1000 people and 23 affected 1000-5000 people.

About 60% of attacks hit 100 or fewer people, down from 63%.

Some 223 cases involved compromised contact information, and in 123 cases financial details were compromised. Identity information was involved in 94 attacks.