It's the holiday season, and that means it's time for all of those pundits out there to start gazing into their crystal balls and figuring out what's going to happen in the coming 12 months. I'm a pundit, too, and given the amount of change in the information security business over the past 12 months, 2008 is sure to be eventful.
The old adage for information security professionals is that we want our days to be "uneventful." A good day is a day where nothing happens. So the amount of turmoil in 2007 was certainly unwelcome. But before we delve into the future, let's take a quick look at what happened in 2007. It can be summed up in three words: TJX, PCI and bots.