[Mile2Test]

Discuss key security concerns in 2020 and how are companies/organizations responding to these security affairs.

[Seth Brumfield]

We learned about some of the main cyber security concerns. Like phishing, the different types of phising, ransomware, malware, DDOS/DOS attacks, and a little on insider threats. To respond to these concerns there are ways to set up our hardware. There is a reason we use switches instead of hubs. We use firewalls and can also use different servers for different things and put firewalls in between them. There are also policies and physical structures, like a fence and a security guard or a policy of no removable media.

Within the network we have identity management; identify, authenticate, and authorize. You might have a smart card, or two factor authentication to sign in and authenticate you. You might not have access to all the different drives and folders within your company’s network. There must be a need to know. There are different ways to maintain data and encrypt it to make sure a third party doesn’t gain access. Data can also have different classifications, which make more stringent handling procedures.

In the future I think there will be elaborate AI agent prompt injection where the AI is scrapping the internet and gets commands to do something like give up the owners personal information. AI will have to be treated like another person at the company and maybe even given less access.

[Lenay Nichols]

One of the biggest security concerns in 2020 was the increase in phishing and ransomware attacks. As more people started to work from home, hackers saw an opportunity to trick users into clicking fake links or opening harmful emails. Once inside a system, they could steal information or lock files and demand money to get them back. Companies then responded by improving their security. Many organizations started using multi factor authentication, which requires more than just a password to log in. They also provided security training to help employees recognize suspicious emails and online scams. In addition, companies improved their monitoring systems so they could detect threats more quickly.
These security challenges displayed, protecting information is important for organizations of all sizes. By using stronger security practices and educating employees, companies can better defend themselves against cyberattacks.

References
Cybersecurity and Infrastructure Security Agency. (n.d.). Cybersecurity and Infrastructure Security Agency. U.S. Department of Homeland Security. Retrieved May 29, 2026, from https://www.cisa.gov

[Eugene Estes]

To counter these threats, organizations strengthened their technical defenses. Multi‑factor authentication became a standard requirement, adding layers such as authentication apps, biometrics, or hardware tokens to reduce the risk of compromised passwords. Companies also expanded their cybersecurity training programs so employees could better identify suspicious messages and avoid social‑engineering traps.

On the infrastructure side, businesses upgraded their monitoring and detection tools. Advanced threat‑detection systems, real‑time network analytics, and automated alerts helped IT teams identify unusual activity faster and respond before attacks spread. Many organizations also adopted zero‑trust security models, limiting access and verifying every connection.

These challenges demonstrated how essential strong technology practices are for protecting data. By investing in secure authentication, continuous monitoring, and user awareness, organizations can build more resilient systems and defend against evolving cyber threats.

[Eugene Estes]

2020 posed numerous cybersecurity issues for businesses worldwide. Cybercriminals now have more ways to take advantage of flaws in systems and networks because to the quick expansion of digital communication and remote work online services. Businesses confronted a number of serious security issues that jeopardized data privacy, financial stability, and operational continuity as they relied more and more on technology.
The rise in social engineering and phishing attacks in 2020 was one of the main security issues. Cybercriminals tricked workers into disclosing passwords, bank account information, or other company information by using phony emails and websites. The COVID-19 pandemic was exploited by numerous attackers who sent phony remote work notifications and health updates. Because many employees were working from home without proper IT monitoring, these attacks grew more successful.
The increase in ransomware assaults was another significant worry. Businesses, hospitals, schools, and government organizations were the targets of hackers who encrypted material and demanded payment to unlock them. Attacks using ransomware resulted in significant business disruptions, monetary losses, and harm to one’s reputation. These attacks were particularly dangerous for companies with antiquated security measures or inadequate backup systems.
In 2020, data breaches and inadequate cloud security also became major issues. Some businesses neglected to adequately safeguard their systems as they transitioned to cloud computing and remote collaboration platforms. Sensitive data was made vulnerable to hackers by poorly designed cloud storage, weak passwords, and unprotected remote access systems. This raised the possibility of identity theft, illegal access, and the disclosure of private company information.
Organizations put in place a number of safeguards in response to these security issues. To teach staff members about phishing scams, dubious connections, and responsible online conduct, several businesses have improved cybersecurity awareness training. In order to enhance system security, businesses also used multi-factor authentication, tougher password rules, and endpoint security technologies.

[Seth Brumfield]

Great post on 2020 threats. I was thinking it was stale content and was looking at threats in 2026. I agree 2020 was unique with a lot of people working from home. I think companies had to adapt and we probably have a more secure remote work environment now. If I sign on from home, I have to connect to a VPN and have dual authentication. You also did a great job bringing in cloud computing, I think companies are really transitioning to cloud programs, and I think that can actually help with security. AWS has a solid baseline, and might actually be stronger than some smaller firms!

[Lenay Nichols]

I like your point about how the shift to remote work also created new opportunities for cybercriminals. The increase in phishing attacks during the pandemic showed how important employee awareness and cybersecurity training really are. I also agree that multi factor authentication has become one of the most effective ways to reduce the risk of unauthorized access.

[Author]

Posts