By Thor Olavsrud
Jan. 10, 2017
In 2017, most companies have data breach preparedness on their radar. But the threat landscape is ever-evolving. Staying ahead of emerging threats and the increasing sophistication of cybercriminals requires "constant vigilance," as Mad-Eye Moody from J.K. Rowling's Harry Potter series was fond of saying.
"Preparing for a data breach has become much more complex over the last few years," says Michael Buemmer, vice president at Experian Data Breach Resolution. "Organizations must keep an eye on the many new and constantly evolving threats and address these threats in their incident response plans."
To aid in that effort, Experian Data Breach Resolution recently released its fourth annual Data Breach Industry Forecast, a report rooted in Experian's history helping more than 17,000 companies deal with data breaches in the last decade (4,000 in 2016 alone).
Experian says five data breach trends will dominate 2017:
- Aftershock password breaches will expedite the death of the password.
- Nation-state cyber-attacks will move from espionage to war.
- Healthcare organizations will be the most targeted sector with new, sophisticated attacks emerging.
- Criminals will focus on payment-based attacks despite the EMV shift that took place more than a year ago.
- International data breaches will cause big headaches for multinational companies.
1. Aftershock password breaches will expedite the death of the password
Experian says that "aftershock" breaches, which it considered an emerging trend in 2016, will become more common and varied in 2017.
Earthquakes are often followed by a series of aftershocks, smaller magnitude earthquakes that can occur for years after the initial quake as the earth's crust around the displaced fault plane adjusts.
Password breaches are similar, according to Experian: Attackers continue to sell old username and password information on the dark web. Since users often reuse passwords, this can lead to companies that didn't experience a first-hand data breach becoming the target of repeat unauthorized log-ins, which in turn forces those companies to notify their users that their information is being misused.
By way of example, Experian points to the breach of 500 million Yahoo! Accounts in 2014.
"It has been reported those stolen credentials were subsequently resold and used by other criminals to compromise accounts across a wide variety of services where consumers use the same username and password," Experian notes in the report. "This exposure of the largest-ever breach of usernames and passwords is likely to reverberate for years to come as the exposed credentials make their way through the underground economy. Companies that have never experienced a direct breach will be forced to deal with the aftershock of Yahoo!'s loss of user credentials."
Experian predicts 2017 will see criminals expanding on the aftershock breach concept. They won't just involve usernames and passwords; attackers will take the same approach with even more personal information, like social security numbers and medical information.