Chris Wright, co-founder of Sullivan Wright Technologies, sat down with Kyle Kellams of KUAF-NPR to share insights on how individuals and small businesses can strengthen their defenses against growing cyber threats. The discussion came at a time when global reports identify cybersecurity, misinformation, and disinformation among the world's most pressing risks.

The main takeaway? While cyber threats continue to evolve, many successful attacks still rely on exploiting human behavior rather than sophisticated technical vulnerabilities. Phishing emails, fraudulent text messages, scam calls, fake websites, and misleading online content remain some of the most effective tools used by cybercriminals.

To protect sensitive information, Chris recommended that listeners:

• Think critically before clicking. Many cyber incidents begin when users trust online content without verifying its legitimacy. Taking time to evaluate links, messages, and information sources can help prevent scams and the spread of misinformation.
• Recognize the role of social engineering. Cybercriminals frequently target people rather than technology, using deception and manipulation to gain access to accounts, data, or systems.
• Avoid chasing every new technology trend. Small businesses do not need to adopt every new platform or tool. Instead, organizations should focus on using technologies that fit their needs and managing them effectively.
• Prioritize cybersecurity fundamentals. Keeping software up to date, using reputable business platforms, and maintaining secure configurations remain some of the most effective security measures available.
• Enable security features. Multifactor authentication, access controls, and proper account management can significantly reduce the risk of unauthorized access. Unused accounts, particularly administrative ones, should be removed or disabled.
• Invest in security awareness training. Educating employees about current threats helps create a stronger first line of defense against cyberattacks.
• Create open dialogue. It’s critical to foster a workplace culture where employees feel comfortable reporting mistakes or suspicious activity. Early alerts can dramatically reduce the impact of a cybersecurity incident, while fear of punishment may delay responses and increase damage.

Chris was quick to remind Kyle that cybersecurity does not require constant adoption of new technologies. Consistent attention to awareness, communication, and basic security practices remains the most effective way to protect both individuals and organizations.