Red Hot Cyber
Cybersecurity is about sharing. Recognize the risk, combat it, share your experiences, and encourage others to do better than you.
Select language
Italian Spanish
Search
320x100 Itcentric
Banner Ransomfeed 970x120 1
Cybersecurity is democratic: the same virus hits multinationals and housewives

Cybersecurity is democratic: the same virus hits multinationals and housewives

Fabrizio Saviano : 7 November 2025 09:59

The same malware that yesterday blocked the servers of a major bank today encrypts Mrs. Pina’s photos on her home PC.

As?

With an innocuous WhatsApp message, sent by his nephew, whose wife works at that very bank, who contracted the same virus on his company PC, which spread automatically. This story is not a fairy tale, but the stark reality that demonstrates an uncomfortable truth: cybersecurity is profoundly democratic.

Threats make no distinctions, they target multinationals and small businesses, large corporations and individuals, exploiting the weakest link in the chain: the human factor. Organizations are not abstract containers, but networks of people. Each of us, unknowingly, can become a vector for a cyber attack.

Malware does its job regardless of your bank account: it uses the same techniques to paralyze the servers of a multinational corporation or the home devices of an ordinary person, with obviously very different effects. A misdirected click on a link or attachment from a seemingly trustworthy source can trigger a chain of infections that spreads from the personal to the professional sphere, bypassing firewalls and controls because the real gateway is in our hands.

The chain of infection is simple but ruthless:

  • It often starts from a moment of distraction or an error in our homes, for example a phishing message on WhatsApp or a deceptive email;
  • The infection spreads laterally through connections, shared devices, or cloud services;
  • It ends up on corporate networks, perhaps through an unwitting employee who carries the threat via a smartphone or compromised credentials who knows where.

Despite companies spending millions on defense technologies, the real flaw is the human factor. Criminals know this well and use deception: social engineering, urgent messages, false authority figures, family pressure, and fear are weapons that work on everyone, from the executive to the relative who can’t spot a suspicious link.

Therefore, cybersecurity is an issue that concerns everyone. The most visionary companies have understood this and are investing in security awareness programs that involve not only employees but also their families.

However, Italy still struggles. We are among the last EU countries in terms of basic digital skills: only 45% of Italians possess them, according to the European Commission’s DESI Digital Skills Report 2025. This gap slows the spread of a culture of safety, which should be as civil as road safety or sex education. For this reason, it’s time to introduce cybersecurity as a school subject.

Defense strategies must move from isolated technological silos to an integrated view of security, which considers how human behavior inside and outside the office directly impacts corporate security. The “zero trust” principle applies especially to people: never trust, always verify.

For those who want to delve deeper into the interconnection between training, human behavior, and risk management, the “CISO Security Manager Handbook” offers a detailed analysis and practical suggestions for transforming the human factor from a vulnerability to an asset.

Immagine del sitoFabrizio Saviano
Fabrizio Saviano is an Authorized Instructor (ISC)² for CISSP certification, a consultant in IT security and governance, persuasive and cognitive technologies. He holds a degree in Communication Sciences with a specialization in Cognitivism, was a selected agent of the Milan Postal Police intrusion team, CISO of a global bank, and started BT Security in Italy.

Lista degli articoli