In 2016, hacking on a large scale made the headlines more than ever. Whether it is political parties, government databases in the United States and Saudi Arabia, or large corporations such as Anthem and Target, cyberattacks seem to be on the rise.
Forecasters at Forrester Research recently predicted that the next U.S. president can expect a “major cybercrisis” as companies “grapple with how to defend against escalating, dynamic security and privacy risk.” The researchers lay the blame to a large extent on the increasing complexity and vulnerability of the Internet of Things.
Here are five specific predictions for 2017 from the Forrester researchers:
- A Fortune 1000 company will fail because of a cyberbreach.
- Healthcare breaches will become as common as retail breaches.
- More than 500,000 internet-of-things devices will be compromised.
- Within 100 days, the new US president will face a major cybercrisis.
- National security risks will drive agencies to expand surveillance technologies, creating legal and ethical conflicts between governments and people.
Experian’s latest Data Breach Industry Forecast expects the health care industry to be hackers’ most heavily targeted sector in 2017. So-called ransomware attacks may shift from blocking a provider’s access to patient information and then selling them the key to reopen the data, to selling the data itself on the dark web or leveraging it for identity theft.
The 2016 Verizon Data Breach Report points out that nearly 60% of the security incidents with confirmed data loss occurred in small companies, those with fewer than 1,000 employees. The dominant mode of attack remains email phishing aimed at installing persistent malware, and the primary motive is access to cash.
There are even worries that hackers could hurt the American economy by, among other things, taking down huge parts of the national electricity grid.
A recent report from the Commission on Enhancing National Cybersecurity had some critical advice for the next president. The report’s Action Item 4.1.1 pointed out:
The next President should initiate a national cybersecurity workforce program to train 100,000 new cybersecurity practitioners by 2020.
The report also said:
If our digital economy is to thrive, it must be secure. That means that every enterprise in our society—large and small companies, government at all levels, educational institutions, and individuals—must be more purposefully and effectively engaged in addressing cyber risks. They must also have greater accountability and responsibility for their own security, which, as we now know all too well, directly impacts the cybersecurity of our country.
Identity Theft Resource Center reports that there have been 957 data breaches recorded this year through December 6, 2016, with more than 35 million records exposed. Since beginning to track data breaches in 2005, ITRC has counted 6,766 breaches, involving more than 886 million records.