Cybersecurity and the Problem of Public Awareness

Introduction

In an era where digital technology underpins almost every aspect of life, cybersecurity has become a matter of both personal safety and national security. Yet while governments and corporations invest heavily in digital protection, individuals often remain the weakest link in the chain. The problem is not simply technological but cultural: many people do not understand how much data is collected about them, how vulnerable that data can be, or what role they themselves must play in its protection (ENISA, 2021).

Hidden Depths of Data Collection

Most citizens are unaware of the vast amount of information stored about them in government and corporate systems. Digital portals designed to simplify access to public services often use single sign-on systems. A single password may unlock not only routine services but also highly sensitive information—health records, tax returns, financial statements, and employment histories. Users may assume they are accessing only a narrow part of their profile when, in fact, the same login credentials open a complete dossier of their personal lives (Nissenbaum, 2010). This concentration of data, when poorly understood, increases the risks of identity theft, fraud, or surveillance (Solove, 2021).

The Illusion of Security and Public Complacency

A common misconception is that cybersecurity is futile because “hackers will always find a way”. This fatalistic attitude mirrors the logic of leaving one’s front door unlocked because a burglar might break in regardless. The purpose of locks, alarms, and secure practices is not to guarantee absolute protection but to reduce risks and raise the cost of intrusion (Schneier, 2015). Strong cybersecurity measures—such as multi-factor authentication, complex passwords, and regular updates—cannot eliminate threats, but they significantly decrease the likelihood and severity of breaches (NCSC, 2023).

Public complacency also stems from the invisibility of digital risks. Unlike a broken window or a forced door, compromised data leaves no physical trace. Victims of data leaks may not even realise they have been exposed until long after the damage has been done (Wall, 2017). This invisibility makes it all the more important to treat cybersecurity as a daily responsibility rather than a distant concern.

Shared Responsibility

Cybersecurity is often imagined as the responsibility of experts: programmers, system administrators, or government agencies. While their role is crucial, it is not sufficient. The most sophisticated encryption and firewalls cannot compensate for poor user practices such as reusing passwords across multiple accounts, clicking on malicious links, or neglecting software updates (Singer & Friedman, 2014). Effective cybersecurity is therefore a partnership between technical safeguards and user awareness.

Public education is vital. Just as road safety campaigns teach citizens how to cross safely or wear seatbelts, cybersecurity awareness campaigns must encourage habits such as password hygiene, cautious sharing of personal data, and recognising phishing attempts (ENISA, 2021). Without such cultural shifts, technological protections will always be undermined by human error.

Conclusion

Cybersecurity is not merely a technical issue but a social one. The vast and often invisible scope of data collection leaves individuals vulnerable, while widespread complacency erodes even the strongest protections. Treating cybersecurity as a shared responsibility—between institutions that design secure systems and individuals who adopt safe practices—is essential to safeguarding both privacy and security in the digital age. Protecting personal data should not be seen as optional or burdensome, but as integral to everyday life, as natural as locking a front door.

Bibliography

  • ENISA. (2021). Cybersecurity Culture in Organisations: Roadmap for Improvement. European Union Agency for Cybersecurity.

  • NCSC. (2023). 10 Steps to Cyber Security. UK National Cyber Security Centre.

  • Nissenbaum, H. (2010). Privacy in Context: Technology, Policy, and the Integrity of Social Life. Stanford University Press.

  • Schneier, B. (2015). Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World. W. W. Norton.

  • Singer, P. W., & Friedman, A. (2014). Cybersecurity and Cyberwar: What Everyone Needs to Know. Oxford University Press.

  • Solove, D. J. (2021). Understanding Privacy. Harvard University Press.

  • Wall, D. (2017). Crime, Security and Information Technology. Routledge.

 

© 2025 Eirene Evripidou. All rights reserved.

Hi! I'm Eirene.

I’m a ✧poet✧/writer (prose-poetry. hypertext. non-fiction.) ♡♡♡
// art & code++ (DH/Digital Culture & Tech grad).

Web & Social


Instagram  Bsky


Web 1.0 creativity with Web 2.0 structure. #OpenWeb #ArtOverAlgorithm #IndieWeb