- More comprehensive adoption of multi-factor authentication (MFA) tools and methods
- Ensuring better backups to thwart ransomware and other attacks
- Paying more attention to cloud data server configuration
- Doing continuous security awareness training
For this year’s post, I re-examine each of these areas, chart progress and trends, and offer a few new suggestions. Attackers have gotten more determined and targeted and software supply chains have become more porous and insecure. What is clear is that security awareness remains a constant battle. Standing still is admitting defeat. Chances are you aren’t as aware as you think you should be, and hopefully I have given you a few ideas to improve.