What National Cybersecurity Awareness Month Means in 2025

Fortra’s Katrina Thompson wrote a piece tying National Cybersecurity Awareness Month to practical, week-by-week security actions. I was quoted in the section on multi-factor authentication, grounding the recommendation in the operational reality that valid accounts are now the most exploited path to compromise, with password cracking and initial access brokers outpacing credential-only defenses.

The argument is simple but consistently underweight in practice: MFA blocks most break-ins because a stolen password alone is no longer enough. The gap between knowing this and actually enabling it across email, banking, and cloud storage accounts is where most individuals remain vulnerable.

Quoted in Fortra Read the full article →