April 04, 2017
Which industry do you think experienced the most cyberattacks in 2016? If you guessed healthcare, think again.
New data from the 2017 IBM X-Force Threat Intelligence Index shows that although the healthcare industry was most frequently targeted by cyberattacks in 2015, the financial services industry took the cake in 2016.
The healthcare industry also fell off the map in terms of the number of records compromised. Healthcare saw a whopping number — nearly 100 million records — leaked in 2015, compared to only 12 million records in 2016, resulting in an 88 percent drop.
The IBM X-Force Threat Intelligence Index includes data gathered between January 1, 2016, and December 31, 2016. Each year, IBM Security Services keeps track of incidents from over 8,000 devices in more than 100 countries. IBM X-Force not only runs spam traps across the globe but also analyzes over 37 billion websites.
Despite the lower number of compromised healthcare records, the report found the number of records leaked across all industries grew at an astounding rate: 566 percent. While there were 600 million records compromised overall in 2015, there were more than 4 billion compromised in 2016.
And it’s not just the number of compromised records that changed. Cybercriminals started rethinking their game plans in 2016. The report noted cybercriminals increasingly started to go after unstructured data, including business documents and email archives.
“Cybercriminals continued to innovate in 2016 as we saw techniques like ransomware move from a nuisance to an epidemic,” Caleb Barlow, IBM Security’s president of threat intelligence, said in a statement. “While the volume of records compromised last year reached historic highs, we see this shift to unstructured data as a seminal movement. Unstructured data is big-game hunting for hackers and we expect to see them monetize it this year in new ways.”
Ransomware is indeed becoming an epidemic across every industry. As the report notes, ransomware “continues to be one of the most profitable forms of malware in terms of effort versus earnings.” The report specifically points to the February 2016 case of Los Angeles-based Hollywood Presbyterian Medical Center as an example of the growing threat of ransomware. Ransomware is typically distributed via attachments in spam emails. As such, 2016 saw a fourfold increase in spam compared to 2015. About 44 percent of spam included dangerous attachments, and 85 percent of those attachments included ransomware.
Moving forward, organizations — whether in healthcare or not — must put an increased emphasis on security. They must also be open to collaborating with other organizations and individuals to learn best practices. “The faster they react to cybercrime findings and share their experiences across the security community, the less time each malware variant can live and/or see successful fraud attacks,” the report concludes. “As a result, cybercrime can become much less financially viable for attackers, as exposure can weed out large numbers of fraudsters who abandon their criminal pursuit for lack of profit.”