Arrow back

Ten cybersecurity myths that could leave you (and your organisation!) vulnerable

20 April, 2023

With technology advancing at breakneck speed, it's no secret that cybersecurity is more important than ever. Unfortunately, cybercriminals aren’t standing still, either. Instead, they’re getting more innovative in exploiting vulnerabilities to gain access to sensitive information.

Although there is growing awareness of the need for cybersecurity in our everyday lives, many of us still cling to false beliefs that can leave us and our organisations vulnerable to cyber attacks.

In this blog post, we'll tackle 10 common cybersecurity myths head-on, explaining why they're untrue and why it's crucial not to fall for them. So buckle up and get ready to separate fact from fiction in the world of cybersecurity!

Myth #1: “I have nothing worth stealing.”

Many people believe that they are not a target for cybercriminals because they don't have the assets or finances to be worth the effort.

However, this is a dangerous myth.

Cybercriminals can use your personal information, such as your name and address, to create fake identities and commit fraud. They can also use your computer or device to launch attacks on other targets, which make virtually anyone a handy target to acquire.

Everyone is a potential target for cybercriminals, regardless of how valuable they think their information is!

Myth #2: "I have antivirus software, so I'm protected."

Antivirus software is certainly helpful to your cybersecurity, but more is needed.

Antivirus software can only detect known threats, so it may not be able to protect you from new or advanced attacks. Nor can it intercept people and stop them from sharing their personal information on a dodgy website.

It's important to use other security measures, such as educating your employees to protect your organisation against cyber attacks.

Myth #3: "I only visit safe websites, so I can't get infected."

Even seemingly safe websites can be compromised by cybercriminals. They can inject malware into legitimate websites or create fake websites that look identical to real ones!

Users can unknowingly download malware by clicking on links or downloading attachments from these websites. It's important to be cautious and always verify the authenticity of a website before entering any sensitive information.

Myth #4: "I use strong passwords, so I'm safe."

Using strong passwords is an essential part of good cybersecurity hygiene. However, it's not a cure-all when it comes to cybersecurity.

Cybercriminals can use various techniques, such as brute force attacks or phishing, to gain access to your accounts even with a strong password.

Multi-factor authentication, which requires a second factor such as a code sent to your phone, is a more effective way to protect your accounts, and should be deployed on every service that supports it.

Myth #5: "I can put off updating my software."

We hate to be the bearer of bad news, but your outdated software opens you to vulnerabilities that cybercriminals can easily exploit. So it’s time to update your systems!

Keeping your software updated with the latest security patches and updates is essential. This includes your operating system, applications, and browser plugins.

Protect your organisation with truly effective training

Join the thousands who've discovered how Bob's Business' security and compliance awareness training reduces risk, demonstrates improvement and builds cultures.

Myth #6: "I can spot a phishing email."

While some phishing emails beg to be ignored (“a wealthy relative recently passed away”, anyone?), many phishing emails can be very convincing and can trick even the most vigilant users. They often use social engineering techniques, such as creating a sense of urgency or posing as a legitimate organisation, to convince users to click on a malicious link or download an attachment.

It's important to be cautious and always verify the authenticity of an email before clicking on any links or downloading any attachments.

Myth #7: "I don't need to back up my data."

Backing up your data is essential in case of a cyber attack or other disaster. It's important to have multiple backups, both on-site and off-site, to ensure that your data can be recovered in the event of a data loss or ransomware attack.

One common mistake organisations often make is they store their backups in the same place as their original files. However, this means if you suffer from a cyber attack or other incident your backups will be just as vulnerable. Store your backups in different locations, even keeping copies of your most precious files offline altogether.

Myth #8: "I'm safe on public Wi-Fi if I just avoid sensitive activities."

Public Wi-Fi is generally insecure and cybercriminals can easily intercept your internet traffic, even if you're not doing anything sensitive.

The best way to protect yourself is to use a reputable VPN service that encrypts your internet traffic by creating a secure tunnel between your device and the VPN server.

Don't fall for this myth – invest in a quality VPN and stay safe on public Wi-Fi.

Myth #9: "I don't need to worry about cyber attacks because I have a Mac."

Macs are no longer immune to cyber attacks, as cybercriminals are increasingly targeting Apple devices due to their growing popularity, false sense of security, and integration into enterprise environments.

Mac users should use antivirus software to protect themselves, keep their software up-to-date, and be cautious when downloading from unknown sources.

Myth #10: "I'm not tech-savvy, so I can't protect myself"

Everyone can take basic steps to protect themselves online, regardless of their technical knowledge. These steps include using strong passwords, enabling two-factor authentication, keeping software up to date, avoiding suspicious links and downloads, backing up data, and using a VPN on public Wi-Fi.

These simple steps can significantly reduce your risk of falling victim to a cyber attack.

How Bob’s Business can help protect your organisation

In today's digital world, protecting ourselves against cyber attacks is crucial, and Bob's Business is here to help.

We understand that cybersecurity can be daunting, so we provide distinctive and interactive online training to equip every team member with the ability to detect and respond to phishing attacks.

With a workforce that feels comfortable with cybersecurity and understands their role in protecting themselves and each other, you can protect your business from the 90% of breaches caused by human error.

Back to resources

Ready to build your cybersecurity culture?

Whether you’re looking for complete culture change, phishing simulations or compliance training, we have solutions that are tailor-made to fit for your organisation.

Girl with laptop
Boy with laptop
man and woman with laptops
Global Cyber Alliance