Skip to content

October is Cybersecurity Awareness Month – Takeaways for the Entire Year

October 30, 2023

This month is the 20th annual Cybersecurity Awareness Month, co-sponsored by the Cybersecurity and Infrastructure Agency and the National Cybersecurity Alliance. This year’s theme is “Secure Our World.” The takeaways from this month include “Four Easy Ways to Stay Safe Online” for businesses and organizations to employ and educate their users for use at home:

  1. Use strong passwords and a password manager.
  2. Turn on multifactor authentication (MFA).
  3. Recognize and report phishing. Think before you click or act.
  4. Update software.

These basic safeguards are part, but just part, of effective security.

It’s a good time to explore developments in these safeguards and to incorporate the changes into cybersecurity programs. For example, using passkeys to replace passwords is becoming more common following adoption by major technology companies like Amazon, Apple, Google, and Microsoft. Federal agencies are increasingly warning about using SIM swapping (cloning a victim’s cell phone) to defeat SMS (text message) MFA and encouraging the use of authenticator apps instead of SMS. Phishing is becoming increasingly sophisticated, including using artificial intelligence by attackers, increasing the need for technical defenses and regular user training. There seem to be almost daily reports of new zero-day vulnerabilities (for which security updates are not yet available), which makes it increasingly important to regularly check for and promptly apply updates when they become available, and replace devices and software that no longer receive updates.

Cybersecurity Awareness Month is a time to raise awareness about the importance of cybersecurity. It is important for all users to be attentive to security every time they are using technology, all year long.

If you have questions about the content of this alert, please contact David Ries (dries@clarkhill.com; 412.394.7787), Richard Halm (rhalm@clarkhill.com, 312.985.5564), or another member of Clark Hill’s Cybersecurity, Data Protection, and Privacy Group.

Subscribe for the latest

Subscribe

Related

Event

Webinar: Special Education Bootcamp - Compliance Foundations Under IDEA

Whether you are new to special education leadership or looking to reinforce your foundational knowledge, this interactive webinar will provide a comprehensive overview of the core compliance requirements under the Individuals with Disabilities Education Act (IDEA). Designed for school leaders who are responsible for ensuring legally sound practices, this session will offer practical tools and strategies to help participants navigate common procedural and substantive pitfalls, support sound decision-making, and build a compliant and student-centered special education program.

Explore more
Event

Telehealth Week Webinar 2025: Navigating Legal Changes and Future Trends for Healthcare Providers

Join Paul Schmeltzer, Carrie Foote, and John Howard for our one-hour annual Telehealth Week webinar, focused on the evolving legal landscape of telehealth. This session will cover key topics, including the upcoming DEA final rule on prescribing controlled substances via telehealth, federal reimbursement concerns for telehealth, and what healthcare providers need to prepare for other upcoming changes.

Explore more
Event

Webinar: The Transatlantic Tightrope: AI, ESG and the Evolving Duty of Care for Multinational Companies

Join Mariah Leffingwell and Sam Saarsteiner for a conversation, moderated by co-chair of Clark Hill’s ESG & Sustainability advisory practice, Maram Salaheldin,  that bridges the Atlantic—and the gap between innovation and accountability—as they explore how today’s duty of care must adapt to tomorrow’s technologies.

Explore more