What to Expect in Cybersecurity for 2017: Ransomware, Politics, and Shifting Defenses

The holiday season often brings a sense of renewal, but for cybersecurity professionals, the new year signals fresh challenges. As 2016 fades into memory—a year marked by high-profile breaches and the dominance of ransomware—the question on everyone’s mind is: what lies ahead in 2017? This article delves into the key cybersecurity predictions for 2017, examining how ransomware will evolve, the role of political hacking, and the steps enterprises must take to stay secure.

Ransomware: From Mass Attacks to Targeted Extortion

Ransomware dominated headlines in 2016, and experts agree it will only grow more sophisticated. According to Bitdefender, cybercriminals are investing in automated targeting to distinguish between home users and corporations. This shift allows attackers to demand higher ransoms from businesses, knowing they are more likely to pay to regain critical data.

Catalin Cosoi, chief security strategist at Bitdefender, explains that refining ransomware to target specific groups will dramatically increase success rates. Attackers can craft convincing spear-phishing messages, driving record-breaking open rates. Once inside a corporate network, they can customize ransom demands based on the victim’s data value. This means that ransomware trends 2017 will likely include more personalized and aggressive extortion tactics.

Similarly, Cyber adAPT warns that ransomware could “spin out of control” in the coming year. Citing Symantec’s Security Threat Report, which found over 4,000 ransomware attacks per day in 2016—a 300% increase from 2015—the firm emphasizes that traditional defenses like firewalls and antivirus software are insufficient. Scott Millis, CTO of Cyber adAPT, argues that detection and incident response must improve to combat this rising tide.

Political Hacking and Disruption: A Growing Concern

Beyond ransomware, political hacking is expected to escalate in 2017. The previous year saw state-sponsored attacks and election interference, setting a precedent for further disruption. Experts predict that hacktivist groups and nation-state actors will target critical infrastructure, government systems, and political campaigns.

This trend underscores the need for robust security protocols in public and private sectors. Enterprises should expect increased scrutiny of their supply chains and third-party vendors, as attackers exploit weaker links. For a deeper look at how organizations can bolster defenses, check out our guide on enterprise security best practices.

The Role of Poor Routine IT Practices

Another key prediction for 2017 is the continued fallout from poor routine IT practices. Many breaches stem from basic oversights: unpatched software, weak passwords, and inadequate employee training. As attackers become more sophisticated, these vulnerabilities become easier to exploit.

Security awareness training will be critical. Companies must move beyond compliance-driven approaches and foster a culture of vigilance. Social engineering attacks, often delivered via social networks, target specific individuals to gain access to sensitive data. Without comprehensive education, ransomware and other threats will continue to affect organizations.

CIOs Reclaiming Ownership of Data Initiatives

On a positive note, 2017 may see Chief Information Officers (CIOs) reclaiming ownership of data initiatives. In recent years, data strategy has often been fragmented across departments, leading to inconsistent security policies. As threats multiply, CIOs are stepping up to centralize governance and invest in proactive defenses.

This shift could lead to better integration of security into business processes. For example, implementing data loss prevention strategies can help organizations monitor and protect sensitive information across networks. By taking a leadership role, CIOs can ensure that security is not an afterthought but a core component of digital transformation.

Hope on the Horizon: Collaborative Defense Efforts

Despite the grim outlook, there is reason for optimism. Initiatives like the No More Ransom! project, which provides decryption tools for victims, are gaining traction. Law enforcement agencies are also collaborating more closely with the security industry to disrupt criminal networks.

Raj Samani, CTO EMEA at Intel Security, predicts that these efforts will reduce the volume and effectiveness of ransomware by the end of 2017. While pioneer groups like CryptoLocker and CryptoWall may persist, smaller players are expected to abandon ransomware as defenses improve. This collaborative approach could shift the balance in favor of defenders.

Conclusion: Preparing for a Turbulent Year

In summary, cybersecurity predictions for 2017 paint a picture of evolving threats and emerging defenses. Ransomware will become more targeted, political hacking will intensify, and poor IT practices will remain a liability. However, with CIOs taking charge and industry collaboration expanding, organizations can mitigate risks. The key is to stay informed, invest in proactive measures, and foster a security-first culture. As the new year unfolds, vigilance will be the best defense.