There is good news and bad news when we examine the 2017 health data breach landscape. Let’s start with the bad news: like 2016, there was an average of at least one health data breach per day throughout 2017. In total, there were 477 incidents reported to HHS, the media, or other sources. Interestingly, 74% of all incidents were either the result of insiders (176 incidents) or hacking (178 incidents). The good news is that, despite the high number of incidents, there were fewer massive data breaches that affected large numbers of patient records. As a result, the total number of affected records in 2017 was five times less than in 2016.