CISA launches ‘Secure Our World’ Cybersecurity Awareness Month

mustafahacalaki/Getty Images

Featured eBooks
Space Tech
Read Now

CDM

Read Now

Digital Transformation

Read Now
By John Breeden II

By John Breeden II

|

This year looks to be bigger than ever, due in no small part to the massive uptick in cyberattacks across the board.

October has always been one of the spookiest months. Not only do we have the ghosts and goblins of Halloween starting to creep out of their lairs, but it also starts to turn colder in much of the country. Leaves shine briefly in brilliant fall colors before dropping off of tree branches all together, turning them into skeletal representations of their former selves. Throw in a full moon, which will happen this year exactly on Halloween night, and you have the recipe for a scary month.

Perhaps that is what former president George W. Bush had in mind back in 2004 when he designated October as Cybersecurity Awareness Month. After all, not much is scarier than cyber threats these days. In the beginning, there was not much to Cybersecurity Awareness Month other than perhaps a press release or a static webpage being created. In recent years however, as cybersecurity threats have grown, the Department of Homeland Security, which took over responsibilities for awareness activities in 2013, has gradually ramped up October activities to support the program. 

Today, most of the events surrounding Cybersecurity Awareness Month are handled by the Cybersecurity and Infrastructure Security Agency. And this year looks to be bigger than ever, due in no small part to the massive uptick in cyberattacks across the board.

“As cyber threats become more sophisticated, individuals and families, small and medium businesses, and large companies all have an important role to play in keeping our digital world safe and secure,” said CISA Director Jen Easterly. “This Cybersecurity Awareness Month we are asking everyone to do their part to ‘Secure Our World’ by adopting key behaviors that promote online safety and security.”

The Secure Our World theme permeates all activities this year. It looks to cover the entire gamut of online cyber activities, starting with logging in and passwords. Of course, CISA recommends the use of strong passwords, something the agency has been pushing for years during other Cybersecurity Awareness Months. But this year, they have additionally added a recommendation for multi-factor authentication, especially for important accounts like those which grant access to financial institutions or those which are frequently attacked, like social media accounts. CISA has devoted a webpage to explaining how MFA works, and how people can activate it using available tools like their smartphone to help protect their online activity.

This year also marks an increased emphasis on phishing campaigns, where attackers reach out using email or voice messaging while pretending to be someone they are not — either a representative of an organization their target works with, somebody they know and trust or even their boss. This is also an increasingly critical area because the use of artificial intelligence potentially makes gathering information and generating the scripts for phishing campaigns much easier. There is even a fear that attackers could tap into AI to help automatically launch thousands more phishing attacks than they can today without such assistance. For its part, the CISA campaign tries to educate people about how to recognize when they are being phished, and what actions to take to protect themselves from that kind of attack.

The final pillar of Cybersecurity Awareness Month for 2023 is an old but good one. A large number of the vulnerabilities on CISA’s Common Vulnerabilities and Exposures list are only exploitable when a targeted system is running old versions of software. So, CISA is really pushing people to update their operating systems, software and other programs on a regular basis this year. Ideally, CISA recommends activating automatic updates whenever possible, and also checking manually from time to time as well to see if new updates are available.

And because businesses have slightly different needs than individuals, this year they are getting their own page and activities. For the most part, the four key pillars of the event are the same for businesses, just with more of an effort to demonstrate how to effectively communicate cybersecurity goals to their employees.

Also new this year, CISA has partnered with the National Cybersecurity Alliance, an organization whose board is made up of executives from major corporations, with the goal of  emphasizing the role of individuals in protecting the shared digital ecosystem from cyber threats. The NCA created a selection of resources bundled into a toolkit that both businesses and individual people can download to help strengthen cybersecurity culture in their organizations and homes. The toolkit contains posters and graphics which can be put up around an office, a template for cybersecurity awareness presentations and even email signatures which could be used to promote better security awareness. Various tip sheets are also available for download.

The agency is even hosting several cybersecurity webinars this month which are free to attend and will concentrate on how to implement the various pillars of this year’s Cybersecurity Awareness Month. The webinars are scheduled for the afternoons of Oct. 3, 10, 17 and 24. 

With all of the events happening this October, Cybersecurity Awareness Month could be the biggest ever. And these efforts seem to be helping. A recent survey by the Aspen Digital Institute and the nonprofit member-based group Consumer Reports found that consumers were taking more positive steps to improve their cybersecurity and cyber hygiene than ever before. One of the key examples of those improvements cited by the survey includes using MFA, a key pillar of Cybersecurity Awareness Month this year.

Most of the scary stuff we associate with October is thankfully imaginary or, like the monsters who come by to demand candy, are just part of the fun. Cyberattacks however, are never a laughing matter. But employing better cybersecurity using tactics like those highlighted in CISA’s Cybersecurity Awareness Month this year can at least help to exorcize the worst of the real threats, leaving us free to deal with just the fun stuff — and maybe the deluge of candy — that October has to offer.

John Breeden II is an award-winning journalist and reviewer with over 20 years of experience covering technology. He is the CEO of the Tech Writers Bureau, a group that creates technological thought leadership content for organizations of all sizes. Twitter: @LabGuys

NEXT STORY: House passes bill to limit education requirements for federal cyber roles

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.