True Stories of Cyber Awareness: The Boring 7 (09/22/2025)
We have the top 5 covered with Phishing, Password security and MFA, Data Privacy, Social Engineering and Insider Threats.
We still have Malware, Ransomware, Wi-Fi Security, Cloud and Physical Security, Removable Media and Safe Internet Usage remaining.
These are boring topics but nonetheless they will be covered in this article.
Ransomware is boring due to the ways the data is encrypted on the device. If you have your org configuration correct, then you just need to rebuild the device. Never pay for Ransomware as you still may be without your data. Isolate infected devices and disable network connectivity and see how bad the infection may have spread.
The same is true for Malware, except Malware is much easier to remove but depending on the Malware, a rebuild might be necessary.
Wi-Fi security is boring as you shouldn't trust any network that you haven't used before. I stay away from airport Wi-Fi as who knows who or what could be broadcasting. Pair your device with your cell phone for a secure connection with cellular.
Cloud security depends on proper configuration of services, ports, users and APIs. Internal audits should be 3 to 6 months to fix any misconfigurations.
Physical security could mean security guards or ways for better security like a mantrap or special construction of the building that highlights personal and physical security.
Removable media is another topic where people shouldn't mess around with found thumb or flash drives. Either turn off autoplay or use a sandbox workstation to view unknown removeable media drives.
Safe Internet usage encapsulates all categories as this contains the left-over scraps of what has already been covered. Slow down and take your time before you click on something that could open the doors to a crippling cyber event.
