Skip to main content

Network Security

Why It Matters and How to Defend Against Threats

Introduction

Information and system security now undergirds nearly every aspect of personal life and organizational operations. As data volumes grow and systems interconnect, attackers exploit both technical flaws and human behavior, producing real financial, legal, and safety risks. This post explains why security is essential for individuals and organizations, focusing on two prevalent attacks: ransomware and phishing/smishing. The thesis: threat actors consistently leverage both technology and people; effective defense must combine technical controls, resilient processes, and user training grounded in best practices.

Why Information and System Security Matters

Organizations depend on digital assets to deliver services, protect customers, and sustain trust. The Verizon Data Breach Investigations Report (DBIR) finds that the human element—errors, social engineering, and misuse—appears in most breaches. Ransomware remains a top threat across industries, underscoring that modern risk is socio-technical rather than purely technical (Verizon, 2024). Individuals are likewise exposed through personal devices, online accounts, and messaging channels that attackers exploit at scale.

Incident 1: Malware and Ransomware


Figure 1. Ransomeware Image


Ransomware capitalizes on common weaknesses: unpatched software, exposed remote services, weak or reused passwords, and insufficient network segmentation or backup practices. Once inside, operators move laterally, escalate privileges, and encrypt or steal data to extort payment. These techniques succeed where organizations lack layered defenses and a rehearsed response plan (Cichonski et al., 2012).

Warning signs: sudden file inaccessibility, ransom notes, abnormal CPU/disk activity, disabled security tools, and attempted data exfiltration.

Damage: downtime, business interruption, data loss, regulatory exposure, reputational harm, and increasingly, double extortion (encryption plus publication threats) (ENISA, 2024).

Defenses:

  • Maintain offline, encrypted, regularly tested backups. Conduct restore drills to ensure recovery integrity (CISA, 2025).
  • Enforce identity and patch discipline: MFA on remote/admin accounts, least-privilege access, and timely patching of exposed services.
  • Prepare incident-response roles, runbooks, and evidence handling using NIST SP 800-61 (Cichonski et al., 2012).

Incident 2: Phishing and Smishing


Figure 2. Example of a smishing text message.


Phishing works because it targets people—impersonating trusted brands, creating urgency, and exploiting weak verification habits. Smishing adds the immediacy of SMS, where sender identity is harder to verify. The DBIR reinforces how social engineering bypasses technical controls when users are hurried or fatigued (Verizon, 2024).

Warning signs: unsolicited requests for credentials or payment, mismatched URLs, grammar errors, and “secure” messages delivered via HTTPS that are still fraudulent.

Damage: account takeover, wire fraud, malware installation, identity theft, and exposure of customer data (FCC, 2024; FTC, n.d.).

Defenses:

  • Prevent and authenticate: deploy SPF, DKIM, DMARC, and filtering to reduce spoofing; require MFA so stolen passwords alone aren’t enough.
  • Train and test users with recurring, bite-sized simulations. Encourage slowing down, verifying out-of-band, never entering credentials from a link, and reporting suspicious messages.
  • If smishing succeeds: reset credentials, monitor accounts, and report to carriers/authorities (FCC, 2024).

Conclusion

Security matters because attackers persistently combine technical exploitation with manipulation of human behavior. Ransomware thrives on weak identity, patch, and backup practices; phishing and smishing thrive on urgency and impersonation. Individuals and organizations can reduce risk through tested backups, MFA, patching, incident-response plans, email authentication, and user training. When defenses address both technology and human factors, organizations recover faster, individuals lose less, and the overall attack surface shrinks.

Labels: Network Security, Ransomware, Phishing, Smishing, Cybersecurity

References

Cichonski, P., Millar, T., Grance, T., & Scarfone, K. (2012). Computer security incident handling guide (NIST Special Publication 800-61, Rev. 2). National Institute of Standards and Technology. Link
ENISA (European Union Agency for Cybersecurity). (2024). ENISA threat landscape 2024. Link
Federal Communications Commission. (2024, February 1). Avoid the temptation of smishing scams. Link
Federal Trade Commission. (n.d.). How to recognize and avoid phishing scams. Link
Verizon. (2024). 2024 Data Breach Investigations Report (DBIR). Link
CISA. (2025). #StopRansomware Guide. Link

Labels:

Comments

Post a Comment