What were the biggest data breaches in 2017? Did the federal government's cybersecurity fare better, two years after the disastrous OPM hack in 2015?

Did ransomware live up to, or even beat, the dire predictions? Which industries were targeted or hacked most?

We have pulled together summaries, surveys and posts worth returning to, for use as a quick reference to consult when working on IT security presentations, cybersecurity plans and requests for budget or approvals in the year ahead:

The Biggest Hacks, Leaks and Data Breaches in 2017

...presented in 28 (illustrated) slides by ZDnet, with links to more in-depth information.

Source: ZDNet

ABA Tech Report 2017: Security

What does the American Bar Association’s 2017 Legal Technology Survey Report reveal about data security in the nation’s law firms? David G. Riess, attorney at Clark Hill PLC, summarizes.

Source: ABA Tech Report

2017 in Review: Data Breach Statistics and Trends - Authentic8 Blog illustration

Largest Healthcare Data Breaches of 2017

78 healthcare data breaches in 2017 that affected more than 10,000+ records - the total number of healthcare data breaches increased in 2017.

Source: HIPAA Journal

2017 Health Data Breach Tally: An Analysis

The good news first: The top 10 incidents reported for 2017 were far smaller than the major data breaches in healthcare in the preceding years. Experts weigh in if these statistics indicate real progress in heathcare cybersecurity.

Source: GovInfoSecurity

30 Must-Read Federal IT Blogs 2017

For public sector IT leaders and readers, FedTech listed the best blogs covering the federal technology business. The list was shortened from 50 blogs (2016) to 30, in part due to the changes in the federal government.

Source: FedTech

5 Must-Read 2017 Reports for IT Security Leaders in Financial Services

Reviews: Before Equifax got breached, it looked as if the financial sector may have reversed the year-over-year trend of worsening data breaches. Often, this reversal was accomplished by implementing rigid web access policies.

Source: Authentic8 Blog

Verizon’s 2017 Data Breach Investigations Report [PDF]

Details about data breaches (in 2016). The report documented that in the financial services sector alone, web app exploits made up 76% of investigated attacks. We concluded that this rise reflects how criminals have shifted their focus to the weakest link in the IT security perimeter fence: the local browser.

Financial data breach causes 2016-2017

Source: Verizon


Image source: NCDOTcommunications on Flickr / Authentic8

2017 Cloud Leaks: 7% of Amazon S3 Servers Were Exposed

2017 has been called the “Year of the Data Breach.” In hindsight, it could also be labeled the “Year of Cloud Bucket Data Leaks” because negligence and sloppiness led to so much leaking of data.

Source: Bleeping Computer

2017 Ransomware Report

According to this in-depth study conducted by Crow Research Partners, ransomware constituted the fastest growing security threat in 2017. The ransomware strains with the highest “brand recognition” among security professionals were WannaCry, (83%), CryptoLocker (77%) and Petya (67%). 75% of the surveyed organizations encountered up to five ransomware attacks in the 12 months preceding the survey. 79% expect the ransomware threat to increase.

Source: Bitdefender

P.S.: Read what our InfoSec Luminary Lineup contributors predict for the future of ransomware here: Ransomware in 2020: Still a Threat?