What were the biggest data breaches in 2017? Did the federal government’s cybersecurity fare better, two years after the disastrous OPM hack in 2015?
Did ransomware live up to, or even beat, the dire predictions? Which industries were targeted or hacked most?
We have pulled together summaries, surveys and posts worth returning to, for use as a quick reference to consult when working on IT security presentations, cybersecurity plans and requests for budget or approvals in the year ahead:
…presented in 28 (illustrated) slides by ZDnet, with links to more in-depth information.
Source: ABA Tech Report
78 healthcare data breaches in 2017 that affected more than 10,000+ records – the total number of healthcare data breaches increased in 2017.
Source: HIPAA Journal
The good news first: The top 10 incidents reported for 2017 were far smaller than the major data breaches in healthcare in the preceding years. Experts weigh in if these statistics indicate real progress in heathcare cybersecurity.
For public sector IT leaders and readers, FedTech listed the best blogs covering the federal technology business. The list was shortened from 50 blogs (2016) to 30, in part due to the changes in the federal government.
Reviews: Before Equifax got breached, it looked as if the financial sector may have reversed the year-over-year trend of worsening data breaches. Often, this reversal was accomplished by implementing rigid web access policies.
Source: Authentic8 Blog
Verizon’s 2017 Data Breach Investigations Report [PDF]
Details about data breaches (in 2016). The report documented that in the financial services sector alone, web app exploits made up 76% of investigated attacks. We concluded that this rise reflects how criminals have shifted their focus to the weakest link in the IT security perimeter fence: the local browser.
Image source: NCDOTcommunications on Flickr / Authentic8
2017 has been called the “Year of the Data Breach.” In hindsight, it could also be labeled the “Year of Cloud Bucket Data Leaks” because negligence and sloppiness led to so much leaking of data.
Source: Bleeping Computer
According to this in-depth study conducted by Crow Research Partners, ransomware constituted the fastest growing security threat in 2017. The ransomware strains with the highest “brand recognition” among security professionals were WannaCry, (83%), CryptoLocker (77%) and Petya (67%). 75% of the surveyed organizations encountered up to five ransomware attacks in the 12 months preceding the survey. 79% expect the ransomware threat to increase.
P.S.: Read what our InfoSec Luminary Lineup contributors predict for the future of ransomware here: Ransomware in 2020: Still a Threat?
This is a Security Bloggers Network syndicated blog post authored by Gerd Meissner. Read the original post at: Authentic8 Blog