History of Cyber Security

Cyber Security is the practice of Protecting computers, mobile devices, Servers, electronic
Systems, networks, and data from malicious attacks. It is also known as Information Security
(INFOSEC) or Information Assurance (IA), System Security. The first cyber malware virus
developed was pure of innocent mistakes. But cybersecurity has evolved rapidly because of the
impeccable increase in the cybercrime law field on the Web. In this article, we will see the history
of cyber security.

ARPANET and the Creeper in the 1970s:

In the 1970s, the rise of time-sharing systems like ARPANET led to concerns about controlling
data access, prompting the development of "periods processing" for enhanced computer
security. Concurrently, efforts in cybersecurity saw the creation of Creeper by Bob Thomas, a
program capable of moving across ARPANET's network. Ray Tomlinson responded with Reaper,
marking the first antivirus software, which hunted and deleted Creepers, pioneering defense
against malware. Thomas also developed the first computer trojan, a benign program traversing
computers, contributing significantly to computing history.

Birth of commercial antivirus in the 1980s:

In 1987, commercial antivirus software emerged with various notable releases. Andreas Lüning
and Kai Figge introduced their first antivirus for Atari ST, alongside the Ultimate Virus Killer.
Additionally, three Czechoslovakians developed the initial version of NOD antivirus. In the US,
John McAfee founded McAfee and launched VirusScan software, marking a significant milestone
in malware detection.

Threats diversify and multiply in the 2000s:

In the early 2000s criminal organizations started to heavily fund professional cyberattacks and
governments began to clamp down on the criminality of hackings, giving much money serious
sentences to those culpable hackers and Information security continues to advance as the
internet grows as well but, unfortunately so having the viruses.

Cybersecurity in the future After 2022:

The cybersecurity industries are continuing to grow. The most global cybersecurity market size is
forecast to grow to $345.4bn by 2026 according to Statista. Ransomware is one of the most
common threats to any organization of data security and is forecast to continue to increase
applications.
Cyber attacks follow a multi-step process starting with surveillance and information gathering,
using methods like ping scans and port scans. The next step involves exploiting vulnerabilities to
gain system access, which can happen rapidly or over an extended period. Cybersecurity has
evolved significantly, with increasing prevalence and cybercriminals leveraging technologies like
AI and blockchain. Indian lawmakers amended the IT Act in 2000 to address cybercrimes and
enhance cybersecurity measures. Solutions include computer forensics, multi-factor
authentication, and real-time system protections. However, attackers can bypass security
controls like two-factor authentication, prompting organizations to rethink their cybersecurity
approaches. Future cybersecurity efforts will focus on leveraging emerging technologies like AI
for smarter detection and response capabilities. As organizations automate processes,
cyberattacks aim to compromise system security, emphasizing the need for robust defenses,
especially with the impending rollout of 5G networks.
Applications of Cybersecurity

This article explores the concept of cybersecurity and its various applications. It highlights the
importance of cybersecurity in protecting computers, networks, and data from digital attacks
perpetrated by hackers and cybercriminals. The significance of cybersecurity lies in its ethical
practice of safeguarding devices, networks, and data from unauthorized access and malicious
activities. It emphasizes the role of cybersecurity professionals in implementing security
measures to ensure the safety of data and devices. Additionally, the article underscores the
necessity of cybersecurity in addressing vulnerabilities in applications and maintaining their
stability, especially in the face of increasing connectivity of devices to the Internet. Overall,
cybersecurity is crucial for safeguarding users from various threats such as malware, cyber
attacks, and unauthorized access to sensitive information.

Types of Cybersecurity
 Information Security: Information security mainly deals with protecting the private
information of the users from hackers and cybercriminals. It prevents theft of data and
also the condition where hackers extort ransom from users for their sensitive information.
It basically includes User authorization, authentication, and cryptography.
 Network Security: Network Security mainly deals with protecting the integrity and safety
of the network components used by the users and also avoiding denial of service attacks
where the original and legitimate cannot be able to use that computer network. It includes
services like firewalls, antivirus software, and VPNs (Virtual Private Network).
 Application Security: Application Security deals with protecting the applications and
programs on the computer system from potential hacking threats and vulnerabilities that
may occur due to different flaws that hackers take to their advantage.

The various Cybersecurity Threats:

 Illegal Websites: Hackers often include malware, spyware, and worms on these shady
websites which offer free antivirus software or any program or data. It includes malware
and ransomware that may be very harmful to the user’s computer system. These types of
websites contain fraud and spyware containing links and URLs which lead to downloading
of viruses and spyware on the computer.
 File sharing: File sharing platforms transfer data including files, folders, photos, apps, etc.
via the Internet, but this is used as an opportunity by the hackers to spread spyware and
malware along with these files so that their private sensitive information can also be
leaked.
 Emails: Most of the Emails are responsible for spreading various malware, spyware,
ransomware, and viruses on our devices. Mostly, those emails that come from unknown
sources and they contain some shady websites links may contain hidden infected files in
them.
 Phishing: Phishing deals with sending fraud-related emails and messages to a large
number of users that contain some illegal and malware containing URLs so that when the
user clicks them, the malware, spyware, or ransomware automatically gets installed on
the user’s device in the background.

Applications of Cybersecurity:
 DDoS security: DDoS stands for Distributed Denial for Service attack. In this digital attack,
the attacker uses multiple numbers of devices to keep the web server engaged in
accepting the requests sent by him from the multiple devices. It creates fake website
traffic on the server. To deal with this, Cybersecurity helps to provide a DDoS mitigation
service to help cope with it which diverts the traffic to the other cloud-based servers and
the situation gets resolved.
 Web Firewall: A web application server-based firewall gets applied on a large area network
and it checks all the incoming and outgoing traffic on the server and it automatically
tracks and removes fake and malicious website traffic. This Cybersecurity measure helps
to determine and enable auto-traffic monitoring by reducing attack risk.
 Bots: Nowadays, many hackers and attackers use bots to cause multiple device traffic on
the server to make it crash. Cybersecurity helps to deal with identifying fake users i.e.
 bots and make them log out of their sessions so they don’t affect the experience of the
normal users.
 Antivirus and Antimalware: Cybersecurity is used to develop Antivirus and Antimalware
software for preventing all the digital attacks on the computer and protecting these
devices from data breaches, digital attacks, and unauthorized attacks from hackers. It also
helps in maintaining network security and firewall systems for all the connected devices
on the network.
 Threat management systems: Cybersecurity helps to deal with digital threats and attacks
on computer systems. It identifies different points of vulnerabilities and bugs in the system
that can be used by hackers and attackers to defy with it and it automatically optimizes all
the defects in it with the ability to improve in performance issues. It also improves the
ability to quickly overcome a digital attack and provide effective control to the users about
the vulnerability issues.
 Critical systems: Cybersecurity helps to deal with the critical issue attacks that are carried
out on large servers connected to wide-area networks. It maintains the standard high
safety protocols for the users to comply with the cybersecurity measures so that to protect
the devices. It monitors all the applications in real-time and checks regularly the safety of
the servers, the network used by it, and the users themselves.
 Rules and regulations: Cybersecurity helps to create new rules and regulations for the
users, attackers, and the people on the network to follow and comply with certain rules
and norms while they are using the Internet. It gives the power to the authorities to look
into security issues and optimize the network accordingly.
Cyber Security, Types and Importance

Cybersecurity is essential because organizations, including government agencies, corporations,

medical institutions, and the military, store vast amounts of sensitive data on computers and
other devices. Exposure of this data could lead to severe consequences. The concept of
cybersecurity traces back to ARPANET in 1972, where protocols for remote computer networking
were developed. An example illustrates the potential risks: personal information stored on an
online shopping website can be compromised by hackers posing as legitimate entities, leading to
financial loss. Cybersecurity acts as a security gateway to protect information from advanced
cyber threats. Given the increasing prevalence of cybercrime, implementing cybersecurity
measures is crucial for both personal and business security.

Types of Cybersecurity:
1. Network Security –
Focuses on securing computer networks from unauthorized access, data breaches, and other
network-based threats. It involves technologies such as Firewalls, Intrusion detection
systems (IDS), Virtual private networks (VPNs), and Network segmentation.
Guard your internal network against outside threats with increased network security.
Sometimes we used to utilize free Wi-Fi in public areas such as cafes, Malls, etc. With this
activity, 3rd Party starts tracking your Phone over the internet. If you are using any payment
gateway, then your bank account can be Empty.
So, avoid using Free Network because free network Doesn’t support Securities.
2. Application Security –
Concerned with securing software applications and preventing vulnerabilities that could be
exploited by attackers. It involves secure coding practices, regular software updates and
patches, and application-level firewalls.
Most of the Apps that we use on our Cell-phone are Secured and work under the rules and
regulations of the Google Play Store.
There are 3.553 million applications in Google Play, Apple App Store has 1.642 million, while
Amazon App Store has 483 million available for users to download. When we have other choices,
this does not mean that all apps are safe.
Many of the apps pretend to be safe, but after taking all information from us, the app share the
user information with the 3rd-party.
The app must be installed from a trust-worthy platform, not from some 3rd party website in the
form of APK (Android Application Package).
3. Information or Data Security:
Focuses on protecting sensitive information from unauthorized access, disclosure, alteration, or
destruction. It includes Encryption, Access controls, Data classification, and Data loss prevention
(DLP) measures.
Incident response refers to the process of detecting, analyzing, and responding to security
incidents promptly.
Promoting security awareness among users is essential for maintaining information security. It
involves educating individuals about common security risks, best practices for handling sensitive
information, and how to identify and respond to potential threats like phishing attacks or social
engineering attempts.
Encryption is the process of converting information into an unreadable format (ciphertext) to
protect it from unauthorized access.
4. Cloud Security –
It involves securing data, applications, and infrastructure hosted on cloud platforms, and
ensuring appropriate access controls, data protection, and compliance. It uses various cloud
service providers such as AWS, Azure, Google Cloud, etc., to ensure security against multiple
threats.
Cloud base data storage has become a popular option over the last decade. It enhances privacy
and saves data on the cloud, making it accessible from any device with proper authentication.
These platforms are free to some extent if we want to save more data than we have to pay.
AWS is also a new Technique that helps to run your business over the internet and provides
security to your data
5. Mobile Security –
It involves securing the organizational and personal data stored on mobile devices such as cell
phones, tablets, and other similar devices against various malicious threats. These threats
are Unauthorized access, Device loss or Theft, Malware, etc.
Mobile is the very common device for day to day work. Everything we access and do are from
mobile phone. Ex- Online class, Personal Calls, Online Banking, UPI Payments, etc.
Regularly backing up mobile device data is important to prevent data loss in case of theft,
damage, or device failure.
Mobile devices often connect to various networks, including public Wi-Fi, which can pose security
risks. It is important to use secure networks whenever possible, such as encrypted Wi-Fi
networks or cellular data connections.
6. Endpoint Security:
Refers to securing individual devices such as computers, laptops, smartphones, and IoT devices.
It includes antivirus software, intrusion prevention systems (IPS), device encryption, and regular
software updates.
Antivirus and Anti-malware software that scans and detects malicious software, such
as Viruses, Worms, Trojans, and Ransomware. These tools identify and eliminate or quarantine
malicious files, protecting the endpoint and the network from potential harm.
Firewalls are essential components of endpoint security. They monitor and control incoming and
outgoing network traffic, filtering out potentially malicious data packets.
Keeping software and operating systems up to date with the latest security patches and updates
is crucial for endpoint security.
5. Critical Infrastructure Security-
All of the physical and virtual resources, systems, and networks that are necessary for a society’s
economics, security, or any combination of the above to run smoothly are referred to as critical
infrastructure. Food and agricultural industries, as well as transportation systems, comprise
critical infrastructure.
The infrastructure that is considered important might vary depending on a country’s particular
demands, resources, and level of development, even though crucial infrastructure is comparable
across all nations due to basic living requirements.
Industrial control systems (ICS), such as supervisory control and data acquisition (SCADA)
systems, which are used to automate industrial operations in critical infrastructure industries, are
frequently included in critical infrastructure. SCADA and other industrial control system attacks
are very concerning. They have the capacity to seriously undermine critical infrastructure,
including transportation, the supply of oil and gas, electrical grids, water distribution, and
wastewater collection.
Due to the links and interdependence between infrastructure systems and sectors, the failure or
blackout of one or more functions could have an immediate, detrimental effect on a number of
sectors.
6. Internet of Things (IoT) Security-
Devices frequently run on old software, leaving them vulnerable to recently identified security
vulnerabilities. This is generally the result of connectivity problems or the requirement for end
users to manually download updates from a C&C center.
Manufacturers frequently ship Internet of Things (IoT) devices (such as home routers) with easily
crackable passwords, which may have been left in place by suppliers and end users. These
devices are easy targets for attackers using automated scripts for mass exploitation when they
are left exposed to remote access.
APIs are frequently the subject of threats such as Man in the Middle (MITM), code injections (such
as SQLI), and distributed denial of service (DDoS) attacks since they serve as a gateway to a C&C
center. You can read more about the effects of attacks that target APIs here.

Cybersecurity is crucial for all organizations, regardless of size, as technology advances

and digitalization increases across sectors like government, education, and healthcare. It
aims to secure sensitive data, such as emails, and prevent damage to reputation.
Attackers target organizations of all sizes to obtain essential documents and information.
In today's interconnected world, cybersecurity is essential due to the growing volume of
electronically stored and transmitted data, which heightens the risk of cyber attacks. It
involves protecting computer systems, networks, and data from theft, damage, or
unauthorized access.

Importance of Cybersecurity:
Protecting Sensitive Data:
With the increase in digitalization, data is becoming more and more valuable. Cybersecurity
helps protect sensitive data such as personal information, financial data, and intellectual
property from unauthorized access and theft.
Prevention of Cyber Attacks:
Cyber attacks, such as Malware infections, Ransomware, Phishing, and Distributed Denial of
Service (DDoS) attacks, can cause significant disruptions to businesses and individuals. Effective
cybersecurity measures help prevent these attacks, reducing the risk of data breaches, financial
losses, and operational disruptions.
Safeguarding Critical Infrastructure:
Critical infrastructure, including power grids, transportation systems, healthcare systems, and
communication networks, heavily relies on interconnected computer systems. Protecting these
systems from cyber threats is crucial to ensure the smooth functioning of essential services and
prevent potential disruptions that could impact public safety and national security.
Maintaining Business Continuity:
Cyber attacks can cause significant disruption to businesses, resulting in lost revenue, damage
to reputation, and in some cases, even shutting down the business. Cybersecurity helps ensure
business continuity by preventing or minimizing the impact of cyber attacks.
Compliance with Regulations:
Many industries are subject to strict regulations that require organizations to protect sensitive
data. Failure to comply with these regulations can result in significant fines and legal action.
Cybersecurity helps ensure compliance with regulations such as HIPAA, GDPR, and PCI DSS.
Protecting National Security:
Cyber attacks can be used to compromise national security by targeting critical infrastructure,
government systems, and military installations. Cybersecurity is critical for protecting national
security and preventing cyber warfare.
Preserving Privacy:
In an era where personal information is increasingly collected, stored, and shared digitally,
cybersecurity is crucial for preserving privacy. Protecting personal data from unauthorized
access, surveillance, and misuse helps maintain individuals’ privacy rights and fosters trust in
digital services.

Challenges of Cybersecurity:
Constantly Evolving Threat Landscape:
Cyber threats are constantly evolving, and attackers are becoming increasingly sophisticated.
This makes it challenging for cybersecurity professionals to keep up with the latest threats and
implement effective measures to protect against them.
Lack of Skilled Professionals:
There is a shortage of skilled cybersecurity professionals, which makes it difficult for
organizations to find and hire qualified staff to manage their cybersecurity programs.
Limited Budgets:
Cybersecurity can be expensive, and many organizations have limited budgets to allocate
towards cybersecurity initiatives. This can result in a lack of resources and infrastructure to
effectively protect against cyber threats.
Insider Threats:
Insider threats can be just as damaging as external threats. Employees or contractors who have
access to sensitive information can intentionally or unintentionally compromise data security.
Complexity of Technology:
With the rise of cloud computing, IoT, and other technologies, the complexity of IT infrastructure
has increased significantly. This complexity makes it challenging to identify and address
vulnerabilities and implement effective cybersecurity measures.

Strategies for Addressing Cybersecurity Challenges:

Comprehensive Risk Assessment:
A comprehensive risk assessment can help organizations identify potential vulnerabilities and
prioritize cybersecurity initiatives based on their impact and likelihood.
Cybersecurity Training and Awareness:
Cybersecurity training and awareness programs can help employees understand the risks and
best practices for protecting against cyber threats.
Collaboration and Information Sharing:
Collaboration and information sharing between organizations, industries, and government
agencies can help improve cybersecurity strategies and response to cyber threats.
Cybersecurity Automation:
Cybersecurity automation can help organizations identify and respond to threats in real-time,
reducing the risk of data breaches and other cyber attacks.
Continuous Monitoring:
Continuous monitoring of IT infrastructure and data can help identify potential threats and
vulnerabilities, allowing for proactive measures to be taken to prevent attacks.

How to Protect Yourself from Cyber Threats:

There are several steps you can take to protect yourself from cyber threats, including:
 Use strong passwords: Use unique and complex passwords for all of your accounts, and
consider using a password manager to store and manage your passwords.
 Keep your software up to date: Keep your operating system, software applications, and
security software up to date with the latest security patches and updates.
 Enable two-factor authentication: Enable two-factor authentication on all of your accounts
to add an extra layer of security.
 Be wary of suspicious emails: Be cautious of unsolicited emails, particularly those that ask
for personal or financial information or contain suspicious links or attachments.
 Educate yourself: Stay informed about the latest cybersecurity threats and best practices
by reading cybersecurity blogs and attending cybersecurity training programs.
Incident Management in Cyber Security

Incident management in cybersecurity involves identifying, managing, recording, and analyzing

security threats and incidents. It is a critical process before or after a cyber disaster in an IT
infrastructure. Effective incident management, guided by knowledge and experience, can
mitigate the adverse effects of cyber destruction and prevent cyber-attacks. It is essential for
preventing data leaks and protecting organizations from compromise. The ISO/IEC Standard
27035 outlines a five-step incident management process: alerting, engaging the incident
response team, identifying potential incidents, assessing them, responding by containing,
investigating, and resolving them, and finally, learning and documenting key takeaways from
each incident.

The provided tips aim to enhance security incident management:

 Develop a comprehensive incident management plan tailored to the organization's needs.
 Include policies and guidelines for incident detection, reporting, assessment, and
response, regularly updating them based on lessons learned.
 Formulate an Incident Response Team (IRT) with defined roles, including finance, legal,
communication, and operations.
 Conduct regular training and mock drills to ensure the effectiveness of the IRT.
 Perform post-incident analysis to learn from successes and failures and adjust incident
management processes accordingly.
 Establish clear communication channels within the IRT and with other stakeholders.
 Implement a centralized incident tracking system to monitor incidents and share
information.
 Develop incident response playbooks with step-by-step instructions for various security
incidents.
 Conduct regular vulnerability assessments to identify and address security weaknesses.
 Consider outsourcing incident response to third-party providers if internal expertise or
resources are insufficient.
 Ensure compliance with regulatory requirements related to incident management to avoid
legal or financial consequences.
Necessary part of incident response : Always make a habit of collecting evidence and analyze
forensics which is a necessary part of incident response. For these circumstances, the following
things are needed.

The necessary components of incident response include:

1. Establishment of a well-defined policy for evidence collection to ensure its accuracy and
admissibility in court.
2. Ability to employ forensics for analysis, reporting, and investigation purposes.
3. Personnel of the Incident Response Team (IRT) should be trained in cyber forensics and
possess knowledge of legal and governance aspects.
4. Maintenance of a proper chain of custody for all evidence collected to establish its
authenticity and integrity in court.
5. Access to specialized tools for evidence collection and analysis, such as network and host-
based forensics tools, memory forensics tools, and malware analysis tools.
 6. Documentation of all evidence collection and analysis activities to maintain a clear and
complete record of the incident response process.
7. Preservation of evidence to protect it from alteration, deletion, or destruction.
8. Adherence to legal and regulatory requirements, including procedures for handling
personally identifiable information (PII) and data protection regulations.
9. Collaboration with law enforcement agencies when necessary, involving sharing evidence
and cooperating with investigations while ensuring compliance with legal requirements.
Overall, a strong incident management process is crucial for minimizing recovery costs, potential
liabilities, and damage to both individuals and organizations.

Future of Cybersecurity
The past few years have been filled with shocks for the IT industry. The wave of global
ransomware attacks that struck from 2017 to 2019 prompted rapid changes to cybersecurity
strategies all over. Then came a pandemic that forced organizations to rethink their approaches
once again as phishing attempts increased. Lately, there’s been another surge in ransomware
attacks, with a 50% increase in the daily average in Q3, as against H1.

With these shocks, the future seems entirely uncertain. But there is a lot of hints we can glean
from the present situation, enough to map out expectations for the new year and the future
direction of cybersecurity.

People are the New Perimeter :

With the workforce of the corporate world growing more dispersed as the months pass,
safeguarding data is more about protecting endpoints and the people who control them.
Organizations cannot afford to rely on firewalls nowadays that most data is stored on the cloud
and there are several endpoints instead of a few data centers.

The ultimate aim of today’s cybersecurity is not just to protect the network and infrastructure,
but rather to protect the data stored on endpoints connected to the network. Traditional security
had been focused on preventing intrusions but now, what leaves a network is more critical than
what comes in, even though the latter usually leads to the former.

The evidence for this is the rapid rise in ransomware threats and phishing attacks. Some may
clarify that identity is the new perimeter, or data itself, but all are essentially the same thing:
that organizations, now more than ever, have a greater responsibility to protect people who have
access to essential data.

Every other solution is hinged on this principle. It is the idea behind new secure authentication
methods as well as the use of behavioral analytics to monitor employee actions and flag irregular
appearances.

AI and Machine Learning :

Signature-based cybersecurity tools are notorious for their false positive alerts. According to this
report, more than two-fifths (43%) of organizations experience false positive alerts in more than
20% of cases, while 15% reported more than half of their security alerts are false positives.

That had been good enough in the past but not anymore. Organizations need to be able to
detect threats with more precision, especially since cybercriminals are now adopting artificial
intelligence to launch attacks with greater scale and sophistication.

Next-generation cyber threats are ruthless and smart, so it is a battle of whose AI is stronger
now.

AI would help us to detect system vulnerabilities faster, increasing our defense against zero-day
attacks. Unsupervised learning (a model of machine learning), for instance, can help detect
never-seen-before attacks, ensuring that our defense remains one step ahead of the attackers.
Likewise, AI is our best bet against bot attacks as well as the deepfake problem.

AI has not evolved enough to replace humans, but it does a good job at enhancing human efforts
at cyber protection, and every other use case.

AI and machine learning are helping us make better decisions to strengthen our defenses. For
the future of cybersecurity, one can imagine a hybrid strategy that bridges legacy tools such as
VPNs and firewalls with next-gen AI capabilities to provide comprehensive security cover and
anonymity when using streaming services, provide access to geo-blocked contents, and protect
against malware and phishing attacks.

Data Analytics and Automation :

Having identified data protection as the most critical step in cybersecurity today, it is essential to
note that we are dealing with enormous amounts of data here, at a scale that defines human
efforts and understanding.

Endpoints are growing further apart and IT departments have a more daunting task of
maintaining comprehensive visibility over the endpoints and the data traffic.

AI in cybersecurity depends on the establishment of a baseline for normal/acceptable behavior

and subsequently sending alerts when there is a deviation from the established pattern. This
relies on data.

Data science enables us to optimize decision-making and improve our techniques as necessary.
With predictive analytics, we can get more accurate assessments of our cybersecurity defense
framework, identify vulnerabilities, and stop potential threats. Data analytics puts an end to the
subjective analyses, usually marked by uncertainty and errors.

The automation of these processes (analytics and threat detection) frees up the tasks in the
hands of the IT department, who now have to concentrate their human efforts on threat
response, mitigation, and neutralization.

In cybersecurity automation, experts commonly reference SOAR (Security Orchestration,

Automation, and Response) and SIEM (Security Information and Event Management) tools.

Authentication :
Having realized that passwords are not enough protection, cybersecurity experts have started
rethinking authentication models to provide more secure access.

More so, the much-famed biometrics authentication has come under some doubt due to the
proliferation of deepfakes. Multi-factor authentication is still quite popular but it still has some
vulnerabilities.

Risk-Based Authentication, a solution that grants or restricts access based on a risk score
assessed via login behavior, assesses risk based on a number of factors such as IP address,
geographic location, device info, and even the sensitivity of data to be assessed.

RBA relies on AI and behavioral analytics to control access not just based on the identity of the
user (which can be compromised, altered, breached, anything), but rather the context of access.

RBA is hinged on continuous authentication as well as the least privilege principle, which states
that no one should access more resources than they need for performing a specific task. This
principle is important for various reasons, chief of which is that it limits the attack surface should
a breach occur.

Continuous authentication conducts identity verification on an ongoing basis, to ensure that a

legitimate login session has not been compromised.

Conclusion :
Regarding the future of cybersecurity, there is still a lot that is unclear. For instance, there is no
certain prediction for when the planet would be rid of COVID-19, whose presence continues to
affect business operations and cybersecurity.
What we do know is that cybercriminals are not backing down and we shouldn’t. In fact, this is a
time for organizations to make their defenses tighter so as not to be caught off-guard.