Each October, the cybersecurity industry recognizes Cybersecurity Awareness Month, an international initiative first launched by the National Cybersecurity Alliance in 2004 to provide education about online safety and empower individuals and businesses to protect their data from cybercrime. This October, Keeper Security took this important commemorative month one step further. We decided that it’s time to move from knowing digital risks to taking decisive action to prevent damaging cyber attacks.
Keeper launched Cybersecurity Awareness Action Month, challenging individuals and organizations to take immediate, actionable steps to secure their digital lives, with a new action announced each week to strengthen online security. At Keeper, we understand that stepping outside your comfort zone is challenging, both online and in the real world. So we kicked off this exciting endeavor with some action of our own, taking our team to Lemont Quarries Adventure Park outside Chicago, where we faced some serious challenges, including a towering rock wall and a sky-high ropes course.
We were a little scared, definitely exhilarated and extremely sore, but we hope our actions will encourage you to take action in your digital life as well!
Action #1: Use strong passwords and a password manager
The first step toward real protection: strong, unique passwords and a reliable password manager to help protect them. Weak, reused passwords remain a critical vulnerability and are among the easiest entry points for hackers. Strong passwords are the first line of cyber defense, and creating them has never been easier – or more important.
A strong password should be at least 16 characters long, contain a mix of uppercase and lowercase letters, numbers and special characters, and avoid easily guessed information like your name, city or pet’s name. These simple but effective measures can prevent unauthorized access, data breaches and the painful aftermath of identity theft. However, remembering these complex passwords can be challenging, which is where a password manager comes in.
A password manager simplifies the process of generating and managing unique, strong passwords for each account. By securely storing passwords in an end-to-end encrypted vault, a password manager like Keeper not only makes it easier to log in to accounts but also ensures that sensitive information remains out of reach of cybercriminals.
Action #2: Learn to spot phishing scams
To spot phishing scams, individuals should be cautious of unexpected requests for sensitive information, carefully examine sender details for subtle inconsistencies in the email address and URL, avoid clicking on unsolicited links or attachments and verify requests with the source using a different communication channel. The human element is often the most vulnerable link in the attack chain, underscoring the need for organizations to conduct regular security training, encourage employees to report suspicious communications and send phishing simulations to improve detection and response.
Sixty-seven percent of respondents to Keeper Security’s 2024 Insight Report revealed that their company struggles to combat phishing attacks, making these best practices increasingly critical in today’s cyber threat landscape.
Phishing is among the most popular cyber threat vectors today, and malicious actors are weaponizing Artificial Intelligence (AI) to speed up and scale these common, yet destructive attacks. AI tools increase the believability of phishing scams and enable cybercriminals to deploy them more rapidly. According to 84% of respondents to Keeper’s 2024 Insight Report, phishing and smishing have become more difficult to detect with the rise in popularity of AI-powered tools, and 42% identified AI-powered phishing as their top concern when it comes to AI security.
Action #3: Enable multi-factor authentication
Strong authentication practices, such as using unique passwords and implementing Multi-Factor Authentication (MFA), are needed to enhance online security and mitigate cyber risks. MFA adds a critical extra layer of protection, making it harder for malicious actors to compromise accounts. Even if your login credentials are compromised, a cybercriminal would not be able to breach your account without the additional authentication step. Yet, despite its proven benefits, MFA remains widely underutilized by both individuals and organizations, with many high-profile examples of damaging breaches due to its absence.
As cyber threats increase, especially with AI-powered attacks, MFA can help protect against these sophisticated attacks. MFA ensures that even advanced techniques – such as deepfakes or compromised credentials – face additional hurdles for access. Thirty-six percent of respondents to Keeper’s Insight Report shared that deepfake technology is among the top emerging attack vectors they’re witnessing firsthand at their organizations, highlighting the importance of addressing this threat.
Action #4: Regularly update software
Software updates for operating systems and applications address known vulnerabilities that can be exploited by cybercriminals, thereby reducing overall cyber risk. Security patches, which fix specific flaws, are vital in protecting all types of users. Keeper’s Insight Report found that 92% of IT leaders across the globe experienced an increase in cyber attacks year-over-year, reinforcing the need for proactive measures. Enabling automatic updates ensures critical patches are applied promptly, minimizing the risk of oversight.
Organizations are urged to prioritize patch management, ensuring that vulnerabilities – especially those being actively exploited – are addressed immediately. Having documented patch deployment processes with protocols for critical updates is crucial for minimizing exposure.
Practice cybersecurity year-round
Beyond Cybersecurity Action Month, we at Keeper encourage individuals and businesses to stay informed and take proactive steps to strengthen their cybersecurity. Cybercriminals continue to ramp up their attacks, and it takes a combination of education and proactive measures to keep them at bay. Subscribe to Keeper’s blog to learn more about how to protect yourself and your business, and follow us on social media for regular tips, training and cybersecurity news. By working together, our actions will strengthen our collective defenses!
Source: Keeper Security