Cybersecurity advocate Marlon Jade Banzuelo is sounding the alarm on the growing risks of online scams and hacking, urging Filipino netizens and small businesses to adopt stronger digital security practices.
In a 12 Beat interview, Banzuelo shared his journey from embedded engineering to cybersecurity consulting, explaining how real-world incidents such as account takeovers, digital fraud, and data exposure pushed him to specialize in practical, incident-driven solutions.
“Consulting followed naturally because many individuals and organizations do not need full-time security teams. They need practical guidance, incident response, and accountability,” he said.
According to Banzuelo, the most frequent threats faced by Filipinos are not advanced hacking techniques but social engineering attacks, phishing through email and messaging apps, weak password reuse, and compromised devices. For small businesses, issues often stem from misconfigured social media accounts, shared admin access, unsecured Wi-Fi, and poor device maintenance.
“Fraud happens without malware—through deception, urgency, and misplaced trust,” he emphasized.
Banzuelo noted that micro, small, and medium enterprises (MSMEs), particularly in regional cities, often view cybersecurity as expensive or unnecessary.
“Cybersecurity is often perceived as relevant only to large corporations. In provincial settings, there is a stronger reliance on trust-based relationships and informal processes,” he explained.
Many MSMEs prioritize visibility and growth, only considering security after suffering an incident.
For businesses with limited budgets, Banzuelo stressed that discipline matters more than sophisticated tools. He recommended clear account ownership, strong and unique passwords, multi-factor authentication, regular device updates, and restricted access.
“Simple habits—such as not sharing admin accounts, verifying requests before acting, and backing up important data—deliver high security value at very low cost,” he said.
Banzuelo also outlined basic practices for everyday netizens: use unique passwords with a password manager, enable multi-factor authentication, keep devices updated, and be cautious of urgent or emotional messages.
“Convenience often reduces security. Awareness, intention, and restraint are just as important as any application or software,” he warned.
With the rise of remote work and online transactions, Banzuelo observed that the attack surface has expanded. Homes have become offices, personal devices now access work systems, and online transactions occur continuously.
“Attackers now exploit speed, distraction, and platform trust rather than technical flaws,” he said, adding that modern cybersecurity is less about firewalls and more about identity, access control, and human decision-making.
He cautioned against common misconceptions, such as believing small organizations are not targets or that antivirus software alone is sufficient.
“Cybersecurity is not a single product—it is a combination of habits, controls, and responsibility,” he explained.
Banzuelo underscored the importance of cybersecurity education, calling it “foundational, not optional.” He urged schools to teach digital responsibility, companies to integrate security into daily operations, and local governments to support practical, community-based programs.
He recalled one case where a business avoided a full account takeover because administrative access was limited and multi-factor authentication was enforced.
“No advanced tools were involved—only clear ownership, access discipline, and refusal to bypass procedures under pressure,” he said.
Looking ahead, Banzuelo warned of AI-assisted scams, deep fake impersonation, and automated social engineering.
“Attackers will sound more convincing, localized, and authoritative. Preparation requires skepticism, verification habits, stronger identity controls, and continuous education,” he advised.
For Banzuelo, the message is clear: cybersecurity is everyone’s responsibility. “Slow down, verify, and never rely on blind trust,” he concluded.
0 Comments