Effective cybersecurity is a 24/7/365 endeavor for companies in every industry. Understanding the state of this global challenge and how best to approach it requires us to come together to share our collective knowledge. Since October 2004, Cybersecurity Awareness Month has given us the opportunity to do just that.
A joint initiative between the National Cybersecurity Alliance (NCA) and the Cybersecurity and Infrastructure Security Agency (CISA), this annual event helps business leaders learn about threat actors’ latest tactics, where their operations may be at risk, and options for filling security gaps. In light of IBM’s 2024 Cost of a Data Breach Report finding that the average cost of a data breach has reached $4.88 million, the stakes are clearly high for all of us.
Cybersecurity Awareness Month’s theme is Secure Our World, and Fortra is dedicated to this movement by being an NCA champion and CISA partner and developing best-of-breed cybersecurity solutions that help organizations increase security maturity while decreasing operational burden.
Oh Behave! The Annual Cybersecurity Attitudes and Behaviors Report 2024
The National Cybersecurity Alliance, in partnership with CybSafe, released the 2024/25 Annual Cybersecurity Attitudes and Behaviors Report. Surveying over 7,000 people worldwide, the report examines how online behaviors and attitudes shape security risks. It explores concerns about online safety and whether they align with actual behavior. The study also highlights who is more likely to misuse AI or avoid security training. This year’s findings reveal key trends and hidden patterns in cybersecurity behavior, offering actionable recommendations to help organizations improve their security practices. The report serves as a crucial resource for understanding and mitigating cybersecurity risks.
30%
of participants said there is "no point" in protecting themselves as their information is already online.
of participants said there is "no point" in protecting themselves as their information is already online.
76%
of Millennials express "high confidence" in being able to identify a phishing attack.
of Millennials express "high confidence" in being able to identify a phishing attack.
29%
use those powers of perception to identify a phishing attack -and not report it.
use those powers of perception to identify a phishing attack -and not report it.
46%
of users have never used a password manager.
of users have never used a password manager.
100%
of cybercriminals are laughing right now.
of cybercriminals are laughing right now.
Stay Safe Tip #1: Use Strong Passwords and Protect Them
While the role of passwords as we know them today will likely change in the future, it’s still important to know how to safeguard them on a corporate and individual basis to prevent unauthorized access and data breaches. Creating strong passwords and passphrases — and never reusing them across multiple accounts — is table stakes for account security.
Likewise, as passwords should be complex and lengthy whenever possible, using a password manager is the best way to create, store, and protect them. These tools also make logins “portable” across devices, giving users convenient access to their secure logins on phones, computers, tablets, and more. Today’s reality is that everyone maintains dozens (if not hundreds) of login credentials for their work and home lives. A trusted password manager corrals and secures this sensitive information to protect both corporate networks and individual devices.
Related Password Resources for Continued Learning
Enforce your business’ password policies with Fortra’s Core Password secure self-service password management capabilities.
Stay Safe Tip #2: Turn on Multi-Factor Authentication (MFA)
When a threat actor has secured account login credentials, multi-factor authentication adds a critical security step that can prevent access to corporate networks, email accounts, SaaS programs, and more. MFA adds a secondary means of approval via a mobile device code, authenticator app, or biometric validation that someone with stolen logins typically won’t have.
That said, successful MFA use requires employee training and technical oversight to optimize the default settings for your organization. While it is possible for motivated hackers to socially engineer their way into an employee’s MFA tool, education and diligence go a long way toward making this increasingly common cybersecurity building block a highly effective solution.
Related MFA Resources for Continued Learning
Ensure those accessing your network are exactly who you think they are with Fortra’s Powertech MFA for IBM i.
Stay Safe Tip #3: Recognize and Report Phishing
Phishing scams have become a constant nuisance in daily life. Some attempts are ridiculously obvious. Others make it through spam filters and appear downright legitimate in message and design, indicating a high level of skill went into creating them. Once an employee clicks on a malicious link or document, a host of dangerous and potentially expensive problems can arise. These can range from launching malware and ransomware onto the corporate network to an employee falling for a social engineering scam that defrauds them of money or sensitive information.
Because employees are the first line of defense against these campaigns, awareness and training are essential for thwarting phishing attacks. This means educating employees on what to look for and what not to click on when it comes to emails and attachments. It also means employing email security and reporting phishing attacks when they are discovered so perpetrators can be shut down.
Related Anti-Phishing Resources for Continued Learning
Implement a one-two phishing punch with an employee training and email protection bundle designed to safeguard against email threats.
Stay Safe Tip #4: Update Software Regularly
For businesses and individuals alike, staying up on the latest versions of software across an ever-growing landscape of programs and devices is no small task. However, it’s a critical one in the fight against cyberthreats as developers frequently address not only bug fixes but also security gaps based on the latest industry intel.
Ensure effective cyber hygiene by implementing software updates as soon as they’re available. Software that’s out of date is more likely to be susceptible to malware and other attacks. Educate employees on the need to let updates run on their work and personal devices to bolster your sphere of protection. Understand which software updates run automatically and which need to be approved to ensure the latest patches are always active.
Related Software Update Resources for Continued Learning
Share your IT and security roadmap with our experts to get their take on strategies and opportunities for keeping your infrastructure security up to date.
Stay Aware All Year Long
Cybersecurity Awareness Month isn’t the only time this critical theme is front and center. Below you’ll find other dates established to highlight cybersecurity themes beyond this month’s activities.