- Cybersecurity Awareness Month was launched by the US government in 2004 to promote collaboration between governments and industry.
- Recent cyberattacks on major businesses, such as Marks & Spencer and Jaguar Land Rover, underscore the urgency of improving cybersecurity.
- Dahua and Axis Communications demonstrate robust cybersecurity measures through globally recognized certifications.
What Is Cybersecurity Awareness Month?
October marks the global initiative of Cybersecurity Awareness Month, designed to promote safer online practices and strengthen digital defences. First established in 2004 by the U.S. government and the National Cyber Security Alliance, this annual event has grown into a global collaboration between governments and industries. This year marks the 22nd Cybersecurity Awareness Month, more important than ever in today's rapidly evolving digital landscape.
There is no immunity to cybersecurity breaches, but adopting certain practices can significantly mitigate risks. By promoting awareness and education, this month-long campaign encourages companies to review their cybersecurity and take proactive steps to protect themselves and their customers.
What Is Cybersecurity?
Cybersecurity Awareness Month serves as an annual reminder for companies to review and strengthen their defences. The digital world is under constant threat. Recent cyberattacks against major organizations include Marks & Spencer, as well as Collins Aerospace, the US firm that provides automatic check-in and boarding software in major global airports. Car manufacturer Jaguar Land Rover has also been targeted by such attacks and has suspended production since August, when it was forced to shut down its IT networks.
The fallout from a cyberattack is more than technical: companies face steep financial losses, reputational damage, and potential legal liabilities. New legislation, including the UK's upcoming Cyber Security and Resilience Bill, reflects growing regulatory focus on protecting digital assets and ensuring resilience against ransomware, phishing, and data breaches. The Bill, announced during the King's Speech on 17 July 2024, aims to update the existing Network and Information Systems (NIS) Regulations.
According to PwC's 2025 Global Digital Trust Insights survey of over 4000 businesses and tech executives from across 77 countries, only 2% have implemented cyber resilience actions across their organisation in all areas surveyed. As the attack surface continues to expand through advances in AI, connected devices, and cloud technologies, achieving cyber resilience at an enterprise level is critical.
How to improve cybersecurity?
Organisations require an agile, enterprise-wide approach to resilience in order to combat the evolving cybersecurity landscape. Simple improvements to cyber hygiene include using strong passwords, updating your software, thinking before you click on suspicious links, and turning on multi-factor authentication. These basics apply to both individuals and organisations; security starts with each person's daily actions online.
During Cybersecurity Awareness Month, CISA reinforces four essential behaviours to stay safe online. These are simple steps that can help to protect accounts, ensuring resilience and security against attacks.
How to choose your password?
Using strong passwords that are long, random, and unique protects accounts more securely against attacks.
What Is Multifactor Authentication?
Multifactor Authentication (MFA) adds an extra layer of security to accounts by requiring a second step to verify your identity when you log in. The most secure methods include a security key or authenticator app with number matching or a one-time code.
How to recognise phishing?
To recognise and report phishing, users should verify that the communication is real, contacting the sender directly or reporting it to the IT department. Users should be reminded not to click on links or attachments that they do not recognise.
Why are software updates important?
Software updates ensure that devices and apps are protected from the latest threats. Automatic updates can be enabled for convenience.
Cybersecurity Certification to Promote User Trust: Dahua and Axis Communications
Beyond internal measures, companies must also carefully evaluate their technology partners. It's vital to work with suppliers that meet recognized cybersecurity standards to ensure data protection and secure communication.
For example, Dahua Technology, a world-leading service provider in IP products, has earned the ETSI EN 303 645 Cybersecurity Standard certification. This internationally recognised certification confirms that Dahua's devices meet stringent requirements for encryption, data privacy, and secure data transmission.
The ETSI EN 303 645 standard for the cybersecurity of IoT devices has been incorporated into the technical regulations of multiple countries and regions and is included within the scope of the CB Scheme. Axis Communications is also a holder of this product certification, demonstrating their commitment to achieving the highest level of security integrity in its products by adhering to global security regulations and industry best practices.
By adopting established cybersecurity frameworks such as NIST or ISO/IEC 27001, companies like Dahua and Axis Communications set a positive example, showcasing how robust standards and certifications can help mitigate risks and build trust with customers.
Conclusion: Now Is the Time to Review Your Business's Cybersecurity
This October, Cybersecurity Awareness Month serves as a reminder to businesses and individuals alike to review and strengthen their defences. By implementing the CISA's four essential behaviours and by carefully reviewing the cybersecurity certifications of suppliers, businesses can significantly reduce the risk of a cybersecurity breach.
ⓒ 2025 TECHTIMES.com All rights reserved. Do not reproduce without permission.
