The SonicWall company warns that many companies They continue to use security models designed for a work environment that no longer exists. The expansion of hybrid work, the widespread use of cloud applications and the rise of artificial intelligence have completely transformed the cyber threat landscape, making it essential that companies reinforce basic protection measures and evolve towards more advanced security models, such as Zero Trust.
AI is allowing cybercriminals to automate tasks that previously required a lot of time and expertise, such as creating highly personalized phishing campaigns, searching for vulnerabilities, or stealing credentials. In this scenario, basic cybersecurity measures continue to be one of the best defenses for companies and all organizations. This reality is also reflected in the main studies of the sector. According to the Verizon Data Breach Investigations Report (DBIR) 202662% of security breaches include a human component, while the exploitation of vulnerabilities has become for the first time the main access vector used by cybercriminals (31%), ahead of credential theft.
The report also warns that artificial intelligence is accelerating the development of attacks, reducing the time needed to exploit known vulnerabilities from months to just a few hours. Given this scenario, SonicWall recommends companies Strengthen your cyber hygiene through five key measures:
1. Use strong and unique passwords for each account
Credentials remain one of the main entry doors for cybercriminals. Having a password manager facilitates the use of complex passwords and prevents the reuse of the same password in different services, a practice that is especially recommended for companies with multiple users and applications.
2. Activate multi-factor authentication (MFA)
Enabling MFA in email, cloud applications, remote access tools, and critical platforms adds an extra layer of protection that makes it difficult to access even when a password has been compromised. This measure is essential for all companiesregardless of its size.
3. Keep systems and applications always updated
Many attacks exploit known vulnerabilities for which security patches already exist. Keeping operating systems, applications and devices up to date significantly reduces the attack surface and improves the resilience of companies against new threats.
4. Periodically review access permissions
Role changes, employee departures, or project terminations can leave accounts with unnecessary permissions. Periodically auditing who has access to what resources helps minimize risks and allows companies Maintain greater control over your digital assets.
5. Adopt a security model based on Zero Trust
The Zero Trust model is based on a simple principle: do not trust any user, device or application by default. Each access request must be continually verified and grant only the minimum permissions necessary to perform a task. This approach is becoming consolidated as a strategic priority for the companies who seek to strengthen their cybersecurity.
Credentials remain one of the main entry doors for cybercriminals
«AI is changing the rules of the game. Attackers can automate campaigns, generate emails virtually indistinguishable from legitimate ones, and compromise credentials in much less time. Given this reality, the companies They can no longer rely solely on protecting the perimeter; They must continually verify who accesses their resources and from what device they do so,” explains Sergio Martínez, Country Manager of Iberia and Italy at SonicWall.
To help the companies To implement this approach, SonicWall Cloud Secure Edge (CSE) applies Zero Trust principles by continuously verifying user identity, device state, and connection context before granting access to corporate applications. Additionally, it inspects Internet traffic and blocks threats regardless of whether the employee works from the office, home, or any other location.
«Cyber hygiene remains the first line of defense, but it is no longer sufficient on its own. Activating MFA, using unique passwords or keeping systems updated are essential practices that must be complemented with a Zero Trust model capable of limiting the impact if an attacker gains access to the network. Today the key is not only to avoid an intrusion, but to prevent it from becoming a powerful breach,” concludes Sergio Martínez.
On the occasion of this awareness initiative, SonicWall calls on companies to review your access policies, update your cybersecurity habits and adopt a protection strategy adapted to an environment where threats evolve at the same pace as artificial intelligence. Because, in 2026, cyber hygiene is no longer a recommendation: it is the starting point for companies build a resilient cybersecurity strategy.
