A nonprofit publication of the Kentucky Center for Public Service Journalism

Alex Weidner: It’s Cybersecurity Awareness Month; educate, protect yourself against cyber-attacks


According to TechJury, online crimes are expected to cost businesses and individuals $6 trillion by 2021. Nearly 60 percent of companies have experienced cyber-attacks such as phishing and social engineering attacks with nearly 43 percent of attacks aimed at small businesses. And businesses aren’t the only ones at risk – cyber criminals were able to exploit the credit cards of 48 percent of Americans in 2016 alone.

That’s why government and industry associations have teamed up for National Cybersecurity Awareness Month, a combined effort to educate individuals and businesses about cybersecurity risks that takes place every October.

Illustration from TechJury

Educating yourself on various types of scams, best practices to prevent attacks, and steps to take if you believe you are a victim of a cyber attack are the first line of defense in preventing costly attacks.

Types of Scams

There are dozens of different cyber attacks and scams for Kentuckians to be aware of. Many of them play on our tendency to trust, give in under pressure and help others. Three of the most common attacks and scams businesses and individuals need to be aware of include:

• Phishing is probably the most well known type of cyber attack. It’s the practice of sending fraudulent or fake communications through emails, texts or phone calls in order to gain access to sensitive data, such as credit card information.

• Malware, which is a term used to describe malicious software, includes spyware, ransomware, viruses and worms. These can block access to your network, install additional and harmful software to your computer without your knowledge, obtain sensitive information through monitoring your keystrokes, and/or disrupt certain components of your computer, rendering the system inoperable.

• Man-in-the-Middle Attacks are also known as eavesdropping attacks. These allow a third party to listen in or receive information from a communication between two people. The man-in-the-middle gains access to these communications through unsecure public Wi-Fi or leveraging malware.

Protect Yourself

The overwhelming number of cyber attacks that happen each year can be alarming, but there are ways to protect yourself or your business from cybercriminals looking for their next target.

For those on social media, be careful which apps you give permission to access your social media profile data – apps could be hackers looking for access to more than just your public profile. They can access personal information like your email address, phone number, birthday and more.

When online shopping, only buy from reputable companies with substantial security features. Create strong passwords that include upper and lower case letters, numbers and special characters (if possible). Always think twice before responding to communications from unknown senders.

If what the person is offering sounds too good to be true (like student loan forgiveness or a free cruise), then it likely is. When in doubt, ask a loved one for advice or leverage reputable resources like the Federal Trade Commission’s blog, to see what sort of scams are trending.

How to Take Action if You Believe You’re a Victim

As the holidays approach, cyber-attacks begin to gain momentum as consumers flock to online retailers to find the perfect gift for a loved one. Knowing how to take action if you believe you are a victim is important. First, if you believe you or your business is the victim of a cyber incident, report it through Homeland Security.

If you believe someone has gained access to your financial information, call your credit card companies to freeze your accounts. Most companies have zero-liability policies, meaning you won’t be held responsible for fraudulent charges. Next, change all passwords and PINS to prevent any further fraudulent use of your accounts. Lastly, file a police report and they can use your records to open an investigation.

If you think your identity has been stolen, follow the steps above, and contact the credit bureaus to freeze your credit. This will stop criminals from being able to open new lines of credit under your name. Identity theft should also be reported to the Federal Trade Commission who can assist you through the process of recovering your identity and work with the police and credit bureaus.


Ultimately, educating yourself is the key to protection. As a consumer, leverage reputable resources to ensure you understand the potential risks associated with cyber attacks. If you’re a business owner, connect with knowledgeable professionals, such as accountants that specialize in fraud detection, attorneys with experience in data protection law, and IT experts to strategize ways to protect your business.

Alex Weidner, CPA, CFE, is President of Rudler, PSC.


Related Posts

Leave a Comment