In the last year, several major developments in international affairs have taken center stage: the rapid and chaotic withdrawal of U.S. troops from Afghanistan, the invasion of Ukraine by Russia, and continuously rising tensions in the Indo-Pacific region, including the South China Sea and escalatory actions by North Korea. The increasing destabilization of the geopolitical ecosystem elevates concerns of potential threats to businesses and critical infrastructure in the United States.
Fortifying an organization’s cybersecurity to guard against attacks from external malicious actors continues to be an essential focal point for businesses that operate in and with the U.S. Frequently overlooked as a main target of cyber attacks, though, are the employees who, whether willingly or not, have themselves become key risk vectors. These employees are often targeted by attackers based on their role in the organization and their real or perceived ability to access sensitive or valuable data.