2021 has been a watershed time in cybersecurity. The pandemic continued to bring new challenges as attackers took advantage of overstretched security teams to unleash new human-operated ransomware1, malware, and nation-state attacks like those against Colonial Pipeline2 and JBS Food3. With the move toward hybrid and remote job, security professionals have found themselves with more endpoints to manage and secure. Meanwhile, menace performers are exploiting gaps anywhere they can. Practicing basic cyber hygiene–applying security patches and updating software and apps–is a simple way to empower your organization.

October is Cybersecurity Awareness Month, and this year Cybersecurity Awareness Month will highlight the importance of cybersecurity education for all around the theme: Do your part. #BeCyberSmart. With more laborers using individual and corporate machines interchangeably, it is even more important to be cyberaware. As new vulnerabilities start, security for all becomes even more integral to organizational success.

Security for all begins with education

Employees are still falling prey to phishing defrauds at alarmingly high rates. According to the 2020 Gone Phishing Report made in partnership with Terranova, it’s not just smaller, under-resourced organizations that are at risk. Large, well-equipped organizations have proven to be even more vulnerable.

Terranova chart depicting the percentage of clicked links, submitted passwords, and clickers who submitted passwords.

Training and education continue to be top of mind for security professionals and their organizations. According to the data from The SANS 2021 Security Awareness Report, over 75 percent of security awareness professionals expend less than half their time on security awareness, connoting awareness is too often less than a full-fledged effort. 4. During the pandemic, 32 percentage of survey participants reported an increase in time spent educating and supporting consumers on security practices on an ad-hoc basis5.

That’s why Microsoft Security is providing educational content to help organisations #BeCyberSmart and learn how to keep safe both at work and at home. On October 7, 2021, we will release the 2021 Microsoft Digital Defense Report( MDDR ), which examines recent trends in cybercrime, establishing hybrid workforce security, combating disinformation, and more–bringing together integrated data and actionable insights to help the global community strengthen our collective digital ecosystem.

Make it a safer world together

In a world of remote and hybrid project, anything less than comprehensive security will leave an organization vulnerable. Comprehensive security goes beyond technology to include education–keeping people updated about the most recent menaces and teach them how to safeguard their identities, data, devices, and home networks. That’s why collectively at Microsoft, we’ve constructed a site that provides education on cybersecurity for all and invite you to learn more.

The 2021 Cybersecurity Awareness Month theme, “Do Your Part. #BeCyberSmart, ” is meant to engage everyone from someones to firms; empowering all of us to protect our online life and create a safer world for everyone.

October 4, 2021: Be cyber smart-alecky

The week will highlight best practices and focus on general cyber hygiene, starting with the basics: strong passwords, multifactor authentication, backing up data, and updating your software regularly with all available spots. Microsoft Security offer some great resources on our site that prove you how you can keep your reports procure, protect yourself from menaces, and go passwordless. In addition, Microsoft Store is providing cybersecurity training for small business owners and will cover the key areas of security, compliance, identity, and device handling as the interdependent components that everything business need today.

October 11, 2021: Fight the phish!

Learn how to recognize messages or chats that come from a stranger or someone not in your normal project circles( like C-suite executives and buy orderings ). This time, Microsoft will sponsor the Terranova Gone Phishing Tournament and has put together some guidance with our partner on how you can protect yourself from phishing. The Gone Phishing Tournament ™ is a free, annual cybersecurity event open to security and risk management leaders.

October 18, 2021: Explore. Experience. Share( cybersecurity career awareness ).

The National Initiative for Cybersecurity Education( NICE) in a week-long campaign to promote the exploration of cybersecurity jobs. Microsoft is actively reaching out to students, veterans, people re-entering the workforce, and anyone with an interest in being part of this vital segment of the 21 st Century workforce. During this week, Microsoft Security will form part of our first Microsoft Student Summit( S2 ), a three-day virtual skills event designed to inspire higher education students on their employability journey. The S2 event aims to help students learn from Microsoft executives, explore the latest Microsoft technologies, and accelerate their path by skilling up and elevating their profile. We’ve also made it easy for students to get ready for Microsoft certification by offering additional daily, live four-hour exam cram sessions aligned to the Microsoft Fundamentals Certifications–featuring Azure Data, Security, Identity and Compliance, and Power Platform.

Diversity in cybersecurity is one of our greatest opportunities. Currently, women represent simply 24 percent of the cybersecurity workforce, which means we must commit more to ensuring girls and women recognize themselves in cybersecurity’s many pathways. That’s why Microsoft Security has teamed up with Girl Security, which is pioneering new approaches to constructing a cybersecurity workforce that reflects the commonwealth, communities, and people it’s working to secure. Through an open-source curriculum designed to support adolescent and adult girls, ladies, and gender minorities, Microsoft Security and Girl Security are working to demystify cybersecurity, highlight visible role models who share their learned insights, and inspire these populations toward cybersecurity’s purposeful mission and in-demand abilities. We’ll also announce more educational initiatives during this week; so stay tuned to our security blog and look for updates here.

October 25, 2021: Cybersecurity first

This entails inducing cybersecurity teach part of employee onboarding and equipping staff with the tools they need to stay safe. For individuals, it intends retaining cybersecurity top-of-mind every time you connect, whether from home or at work. Ever consider your security and privacy fixeds; wherever possible, move to passwordless sign-on. During this week, we’ll highlight best practices for hybrid job by Microsoft Chief Information Security Officer( CISO ), Bret Arsenault, and foster you to view all the weekly featured articles to attain cybersecurity first.

Its own security resource, year-round

Microsoft’s approach to comprehensive security means we go above and beyond our end-to-end security solutions–we likewise help our clients use engineering securely through education and by providing best practices. We’re helping people have a safer online experience by making the 2021 Microsoft Digital Defense Report–one of the most highly downloaded reports Microsoft Security has created–freely available to all on our website on October 7, 2021. Throughout the month, look for upcoming blog posts rendering in-depth information and helpful tips-off for each themed week of Cybersecurity Awareness Month 2021. To access teach, certifications, and other resources that you can share with your organization, visit the Microsoft Security Cybersecurity Awareness education page.

To learn more about Microsoft Security answers, visit our website. Bookmark the Security blog to keep up with our expert coverage on security matters. Likewise, follow us at @MSFTSecurity for the most recent developments and updates on cybersecurity.

1A guide to combatting human-operated ransomware: Part 1, Detection and Response Team, Microsoft Security. 20 September 2021.

2Hackers Breached Colonial Pipeline Using Compromised Password, William Turton, Kartikay Mehrotra, Bloomberg Cybersecurity. 4 June 2021.

3Meat giant JBS pays $11 m in ransom to resolve cyber-attack, BBC News. 10 June 2021.

4Managing Human Cyber Risk, 2021 Security Awareness Report, SANS Security Awareness. 2021.

5Information Security Professionals in the time of COVID-1 9, Sarah Tian, Yonatan Dubinsky, Microsoft 365 Security and Compliance User Research. 24 April 202.

The post #BeCyberSmart: When we learn together, we’re more secure together appeared first on Microsoft Security Blog.

Read more: microsoft.com