Happy New Year? Cybersecurity Predictions for 2018
By Tom Kelly, President and CEO - Article on January 22, 2018
- Cyber Security
- Identity Theft and Fraud
- Incident Response
- Legal and Regulatory
—Originally published on Morning Consult—
2017, to put things mildly, was a challenging year for the cybersecurity space. Equifax, Uber, Yahoo – the list goes on of major companies and institutions that announced that they had experienced breaches that seriously compromised sensitive customer data.
So as we begin a new year, those of us tasked with finding better ways to protect private data have asked ourselves – what will things look like in 2018? It looks like things will get worse before they get better. As the digital landscape grows more and more complex and ubiquitous, the number of opportunities for thieves to exploit weaknesses grows. Here are some cybersecurity trends and predictions you should keep an eye on in the new year:
In light of all these stories, 2018 must be the year where we accept that there’s no real way to stop these kinds of hacks from occurring. Bad actors either already have your data or will be able to obtain it soon. The best thing we can do moving forward is to detect and control the damage as early and as quickly as possible.
There’s no denying that this is a discouraging picture – sorry to be the bearer of such bad news. But it should prompt everyone – consumers, companies and federal leaders alike – to spring into action, using the new year as an opportunity to enact and advance cybersecurity strategies.
For consumers, this could mean improving your digital hygiene: not repeating passwords, avoiding suspicious emails and messages and using two-factor authentication wherever it’s offered. Companies should adopt these practices as well, and they should also consider offering identity theft protection as a competitive benefit that will attract top employees and protect current ones. Federal leaders must continue to address the questions raised by the Equifax breach and look to both industry and international partners as they develop a legal framework that will protect citizens without crushing companies.
By acting immediately and thoughtfully, we can start changing the narrative on cybersecurity. Criminals and bad actors will never completely go away, but if we work together to change our system, we can keep them from always having the last word.
Thomas F. Kelly, a Silicon Valley entrepreneur and an expert in cybersecurity technologies, is president and CEO of ID Experts, a Portland, Oregon-based provider of data breach and identity protection services such as MyIDCare.
It is time to re-examine the way that we think about and what we expect from organizations impacted by cybersecurity breaches. A frank conversation on the responsibilities of company leadership, for both the C-Suite and the board, is long overdue. An organization’s responsibilities around consumer privacy in many ways remain somewhat ambiguous. Only by creating and upholding a consistent standard can corporate America ready consumers for the risks inherent in 21st-century levels of connectivity.
The ancient Chinese general Sun Tzu said “If you know the enemy and know yourself, you need not fear the result of a hundred battles.” While it’s unrealistic to think we can win every battle against cyber criminals, Sun Tzu’s words have a lot to offer. The problem that every privacy and security team faces is how to defend on every possible front with finite resources and budget. And the simple answer is, you don’t have to.
A of couple weeks ago, HBO was hacked by an individual or group of hackers going by the moniker of “Mr. Smith”. Unfortunately for HBO, they seem to be going through a death by a thousand cuts. The hacker is slowly publicly posting pre-releases of upcoming TV episodes from “Ballers”, “Insecure” and “Room 104” according to an article by the Washington Post. The hacker is demanding a ransom to be paid in Bitcoin, in the amount of approximately $6 million.