2021 Top Breaches, Hacks, and Outages 

From incidents in the oil and gas industry to successful ransomware defense in the IT consulting and services industry, to ramped up third-party risk management and an explosion of ESG considerations, 2021 has been an eventful year in the realm of cybersecurity. Here, we’re breaking down everything that you need to know about the year’s top breaches to inform your decision-making for 2022. Let’s dive into the 2021 top security trends.  

Read our blog to learn more about OneTrust’s 2022 TPRM & cybersecurity predictions! 

OneTrust’s Top Security News Content 

Bonus: It wasn’t a breach, but it could have been. Learn more about The Accenture Ransomware Attack: A Use Case for Effective Risk Mitigation, to see what successful incident prevention looks like. 

 2021 Top Breaches & Trends by Industry: 

2021 Security Trends & Key Takeaways 

As an exemplary year in high-profile ransomware cases and ransomware defense success stories, 2021 prompted IT & security teams to evaluate their incident management response strategies with top trends in mind. The community pivoted to consider key threats like ransomware as a service (RaaS), while also adjusting to new industry standards in the realms of Ethics & ESG. But, what were the top takeaways from 2021? 

  1. Get actionable insight from effective risk mitigation techniques used in successful attack defenses: A key aspect of security is integrating continual education and analysis into your team’s best practices. Your team should have a strategy in place that calls for continual monitoring of the space for incident awareness, acceptance of incidents that occur, and should have an incident preparedness plan at the ready. Additionally, your team should always be testing strategies and gathering lessons learned from mainstream breaches and internal incidents. 
  2. Understand the evolution of hackers using RaaS and other trends they’re following as they target organizations: Following a 62% global attack spike (158% increase in North American attacks alone), ransomware is continually predicted to be one of the largest threats to the cybersecurity community at large. RaaS attributed to 20 billion in spending, making it the fastest-growing type of cybercrime.  
  3. Outline the implications of different types of attacks and learn how to be proactive in preventing them: Understand the different types of attacks in terms of your organization’s risk appetite. What are your greatest threats, and does your incident response plan scope solutions and best practices for all of them?
  4. Understand the Importance of TPRM-informed Business Resilience Strategy: Business resiliency and continuity refers to an organization’s ability to respond to and continue efficient and secure operation through an incident of any size. in 2021, the impact that third parties have on business resilience was highlighted through outages and other third-party incidents. Some of the ways you can be impacted are:
    • Internal outages and lapses in operational capabilities  
    • External outages affecting areas across the supply chain  
    • Vendor outages that open your organization to supply chain vulnerabilities   
    • Operational shifts that affect data gathering, storage, and security  
    • Vendor data security is being impacted, leaving your company’s data at risk 
  5. Gain insight into regulatory action being taken against cybercrime: Stay up to date with the latest news on cybercrime and regulatory action across the globe with resources like OneTrust’s Cybersecurity Awareness Hub. 


Read OneTrust’s news coverage:    

Next steps on cybersecurity:       


Follow OneTrust on LinkedIn, Twitter, orYouTubefor the latest on digital transformation.