Cybersecurity News Roundup: Latest Stories and Tips for Cybersecurity Awareness Month

cybersecurity spelled out with blocks

As fall begins and the holidays draw closer, it’s the perfect time to take a look at your cybersecurity infrastructure and ensure you’re doing everything possible to protect your business. While cyberattacks have been increasing overall, hackers become even more active over the holidays, and you want to make sure your business is protected.

We’ll review cybersecurity current events you should be aware of and tips for making the most of Cybersecurity Awareness Month in October.  

Latest News

Staying up to date with the latest cyberattacks and security trends allows you to stay one step ahead of hackers.  

Twilio Breach

Earlier this month, Twilio fell victim to a phishing scam that leaked access to the accounts of 93 individual users of its Authy two-factor authentication (2FA) service. Twilio has stated that the unauthorized access allowed the hacker to register additional devices to those affected accounts. 

Unfortunately, these attacks are not limited to Twilio, as the phishing campaign which has now been dubbed Oktapus, has affected 136 companies. This sprawling attack shows no sign of slowing down and reinforces our need for proper cybersecurity training.

U.S. Cybersecurity Spending

Recently, we have seen the House of Representatives drafting spending bills for the 2023 fiscal year. Cybersecurity spending has reached an all-time high, with the most recent allocated funds reaching a staggering $15.6 billion.

$11.2 billion of the expenditures is being allocated to the Department of Defense, with $3 billion going to civilian agencies within the Cybersecurity and Infrastructure Security Agency (CISA). Cybersecurity awareness training and procedures will be paramount in ensuring that this government spending does not go to waste.

What is Cybersecurity Month?

In October, Cybersecurity Awareness Month (NCSAM) will be celebrated across U.S. companies. This year’s theme—See yourself in Cyber—encourages everyone to realize that cybersecurity is all about people.

National Cybersecurity Awareness Month started in 2004 and was originally established in response to the growing threat of attacks and data breaches. Every October, public organizations and private businesses work together to promote awareness and safety online through events and campaigns.

In addition to spreading awareness, NCSAM is also a time for reflection. As we become more reliant on digital devices and services, it’s important to consider how our actions online can impact our cybersecurity.

Tips for Cybersecurity Awareness Month

If there’s one overarching lesson each cybersecurity awareness month, it’s that there are simple practices every business (independent of size) can put into place in order to significantly improve cybersecurity. Some of these tips include: 

Use a Password Manager

One of the best ways to keep your accounts secure is by using a password manager. This will allow you to have long, unique, and secure passwords for all of your accounts without having to remember them all yourself. We recommend LastPass or 1Password.

Enable Two-Factor Authentication

Two-factor authentication (2FA) is an extra layer of security that can go a long way in keeping your accounts safe; it’s even touted to be 99.9% effective. When 2FA is enabled, even if someone has your password, they will not be able to log into your account without also having access to your phone.

Be Wary of Phishing Emails

Phishing emails are one of the most common ways that hackers gain access to people’s accounts. These emails often look like they are from a legitimate source, but are actually fake and harmful. Malicious actors will usually try to get you to click on a link or download an attachment that will install malware on your computer or give the hacker access to your account.

Boost Your Security With Tech Rockstars

Cybersecurity awareness is more important than ever, and we hope that these tips will help you to stay safe online. For more information on cybersecurity, be sure to check out our blog or contact us today.