Cybersecurity Weekly

 This week, I read a fascinating article about how the Internet of Things (IoT) is making it harder for companies to control what’s connected to their networks introducing serious Shadow IT risks . Shadow IT refers to the use of technology (like apps, software, or devices) without the knowledge or approval of the IT department. Many people bring their own smart devices to work such as smartwatches, fitness trackers, or smart speakers and connect them to the company’s Wi-Fi. These devices often have weak security and go undetected by the IT team. That’s where the risk comes in. Hackers can target these devices to sneak into company networks, steal data, or cause system damage. 🔐 Key Takeaways: IoT devices are growing quickly and aren’t always secure. IT teams need better tools to detect unknown devices on their networks. Policies, network segmentation, and user education are essential to reduce this risk. 📌 My Reflection: I found this article really usefu...

  Hey everyone! 👋 Welcome back to the Cyber Secure Weekly Blog ! This week, we’re talking about something really important in the world of cybersecurity: Zero Trust Security . 🌐 What Is Zero Trust Security? Zero Trust is a new way of protecting networks. The old way was to trust people or devices inside your network and only check outsiders. But today, hackers are getting smarter, and attacks can come from anywhere  even inside your company. So, Zero Trust says: "Never trust, always verify." This means you should check everyone and everything before giving access to your systems or data no matter where they are. 🔑 Key Ideas of Zero Trust Here are some of the main ideas behind Zero Trust: ✅ Verify every time – Don’t trust users or devices just because they’re in the network. 🔐 Give only what’s needed – People should only have access to what they need to do their job. 🚨 Assume breaches happen – Always be ready in case someone gets in. 🧱 Break ...

What It Is: The Dark Web is a hidden part of the internet that you can’t find using normal search engines like Google. To access it, you need special software like the Tor browser. This browser hides your identity and location, so people can go online without being tracked. That’s why the Dark Web is known for anonymous communication. Some people use it for privacy, but others use it for bad reasons. Why It Matters in Cybersecurity: The Dark Web is important in cybersecurity because it’s often used by cybercriminals. They sell stolen data like usernames, passwords, and credit card numbers. You can also find hacking tools and malware there. Cybersecurity experts monitor the Dark Web to find out about new threats before they happen. This helps protect people, businesses, and organizations. It also helps law enforcement track down and stop criminals who use the Dark Web to plan or carry out attacks. In short: Even though the Dark Web is not always bad, it’s often linked to dangerous ...

  This week, I focused on learning about phishing attacks , and it opened my eyes to just how sneaky and dangerous they can be. Phishing isn’t just one thing.  There are several different forms that cybercriminals use to trick people. Here are the most common types I discovered, and how to recognize them:  🎣 1. Email Phishing The most common type. Scammers send fake emails that look like they’re from trusted companies, trying to get you to click a malicious link or enter your login info. 🛑 Example: “Your bank account is locked. Click here to fix it.” 🎯 2. Spear Phishing More personalized and targeted. These emails use your name, job, or other details to look more believable. 🛑 Example: “Hi please review this document for your class project.” 🐋 3. Whaling Aimed at “big fish” like company executives or managers. These attacks often involve fake invoices or urgent business requests. 🛑 Example: “Urgent from CEO: Send payment to this vendor immediately.” ...