Phishing and Security Awareness, Cybersecurity
Speed Is A Strategy, Not A Setting: How Mid-Market IT Should Move
July 08, 2026
Read NowHow often does the average person think about cybersecurity?
For most people who don’t work in the technology industry or have never experienced a data breach, probably not very often.
This lack of cybersecurity awareness is having a major impact: 90% of cyberattacks are caused by human error. Although this statistic highlights how unprepared most of us are for the online threats we face daily, there’s another way to look at it. Most businesses are still in the early stages of prioritizing and putting resources toward cybersecurity. If 90% of data breaches are due to human errors, then that means 90% of these breaches can be prevented. When everyone — not just IT professionals — learns to take cybersecurity seriously, we can collectively work toward reducing the number of preventable incidents.
If you want to begin improving cybersecurity awareness at your office, start by learning about the following ways you or your employees might be putting your company’s security at risk.
According to CompTIA, 94% of employees connect their laptop or mobile device to public Wi-Fi networks. This is a dangerous tradition that opens your organization to a host of potential threats. Public Wi-Fi is designed to let anyone connect to the internet. Unfortunately, this unsecured network gives criminals an easy way to find new victims.
Norton provides examples of the types of attacks that can happen from using public Wi-Fi:
Many employees head to coffee shops after work or on the weekends to get work done, providing a gold mine for cybercriminals. What should your employees do?
Norton recommends the following:
Do:
Don’t:
Remembering a few passwords is tough enough; memorizing a unique login for each online account you have is nearly impossible. According to Dashlane’s password overload study, the average number of accounts registered to one email address in the United States is 130. That’s why only 34% of employees have at least 10 unique logins to remember. If an employee uses the same email and password combination across accounts and one account is hacked, all the accounts that an employee has are open to being compromised, too.
According to Emmanuel Schalit of VentureBeat.com, this is what you can do to help your employees have better login security:
While these steps may sometimes feel inconvenient, it will be worth the effort down the road, when your firm doesn’t have to deal with the fallout of a cybersecurity breach.
Most people have never completed any type of cybersecurity training. It’s crucial to provide this type of education to your employees if you’re serious about reducing the risk of incidents at your organization. Yes, you may hear a few groans from your employees when you tell they need to complete the training and yes, the information presented can feel like common sense, but if it can help prevent a data breach at your company, why not do it?
CompTIA’s Trends in Information Security Study reveals that 45% of employees receive no cybersecurity training from their employers. While you may think your employees are getting by just fine without training, Dell’s End-User Security Survey should make you think twice. According to the survey, 72% of workers are willing to share confidential company information without regard for proper data security protocols.
Even more concerning, the survey revealed unsafe data practices:
“Forty-six percent of employees admitted to connecting to public Wi-Fi to access confidential information, while 49% admitted to using a personal email account for work tasks. The survey found 35% said it was common to take corporate information with them when leaving a company.”
To employees, these actions feel harmless. What they don’t realize is that these simple tasks could potentially take down an entire business. Matt Hamblen, Senior Editor of Computer World, spoke with Avivah Litan, a security analyst at Gartner who shared how cybersecurity training is helping companies:
“When it is instituted, it really makes a huge difference,” Litan said in an email. She said she used to be cynical about the impact of these training programs, but has become convinced recently about how effective they can be. She wrote a blog in December describing how one Midwest energy firm had seen an almost 80% reduction in security incidents after training.”
How do you get started implementing cybersecurity training into your business? The National Cybersecurity Alliance recommends talking frequently with your employees about:
If you want to take it a step further, there are more organized ways to approach employee cybersecurity training, like the Personally Identifiable Information (PII) Training available through Ascend.
Your employees are the biggest cybersecurity risk factor for your business. If businesses can start putting time aside to encourage better cybersecurity practices, we can start to put this era of constant data breaches behind us.
Written by Nik Vargas
Phishing and Security Awareness, Cybersecurity
July 08, 2026
Read Now
Phishing and Security Awareness, Cybersecurity
July 07, 2026
Read Now
Phishing and Security Awareness, Cybersecurity
June 30, 2026
Read Now©2026 Ascend Technologies, LLC, All Rights Reserved | Privacy