Breaches at X, Garmin, and Drizly — plus attacks on dating apps — showed any business can be a target. And that was before AI-driven phishing and deepfake scams made things even harder to spot.

It’s time to revisit the online security conversation. Not just with coworkers, but with kids, parents, grandparents, friends, and even the people you’re meeting on dating apps. Let’s normalize talking about online safety in everyday life.

The Illusion of Anonymity

Online shopping, gaming, streaming, and dating all feel more anonymous than they really are. You might use a made-up username, but most applications still require real, identifying information. And as breach after breach has shown, once that data is stored somewhere, someone with the right skills can get it.

When talking to non-IT folks, make it relatable. Many think they’re too “ordinary” to be targeted. “I have no money.” “I’m just a kid.” “Hackers wouldn’t care about me.” The reality? Any data is valuable to someone.

Talking to Kids About Security

Kids and adults interact online in very different ways, so the conversation needs to be tailored.

My 10-year-old recently got the green light to play games online. Parenting here is a balancing act of giving freedom while keeping him safe. He can only play online with people he knows in real life, and I approve of every person on his list.

Through schoolwork, he’s had to use the internet, but always with my guidance. I explain why I do what I do, like checking sources or running antivirus scans, so he learns the reasoning. We’ve also discussed downloading only from reputable sites and scanning files before opening them.

Kids push boundaries. I know I won’t catch everything, but if safety is an ongoing conversation, it becomes part of their habits. And the more normal it is to talk about online risks, the more natural it will be for them to protect themselves.

Adults: A Different Set of Challenges

Now let’s talk about adults. And yes, I’m looking at my mom here. She’s seen two-factor authentication prompts and remembers the Target breach, so she’s aware breaches happen. But she also:

  • Writes down passwords
  • Reuses them across apps
  • Leaves apps running in the background

Some adults are semi-aware but still take one of two risky paths: ignoring threats because they think they’re unimportant or going full conspiracy mode. Both make them vulnerable.

Breaches like Drizly and Garmin prove that any data is worth something to someone. Using those examples can help skeptical adults understand that personal data has value, whether it’s bank details or just an email address.

And in 2025, the threats are more sophisticated than ever. AI-generated deepfake voices can mimic a friend or family member calling for urgent help. Fake tech support calls can spoof real phone numbers, convincing people they’re speaking with their bank or a trusted company. Even video calls can be forged well enough to trick someone into sharing sensitive information.

The takeaway? The “I’m not important” excuse is no longer valid because attackers don’t need you to be important. They only need you to be connected to someone or something of value.

Social Reconnection and the Risk of Trust

Remote work and social distancing pushed more people online. Friends are reconnecting after years, which can be great but it’s also an opportunity for attackers to impersonate someone you once knew.

There’s more publicly available information about you than you might think. An attacker can use it to build trust, then ask for money or personal details. Phishing isn’t always a badly written email from a stranger anymore.

In 2025, these schemes have evolved into full-scale operations. Romance scams now often use AI-generated photos and backstories, making them far harder to detect. Fake charity drives appear within hours of a natural disaster, complete with convincing websites and fabricated testimonials. And “can’t-miss” investment opportunities, often involving cryptocurrency, are circulated in private groups to create a sense of exclusivity and urgency.

The takeaway? If someone you’ve recently reconnected with starts asking for money, personal information, or quick action on a “time-sensitive” offer, slow down. Verify their identity through another channel and remember that urgency is one of the oldest tricks in the scammer playbook.

Why Now Is the Time to Act

With elections, civic unrest, and a constantly evolving threat landscape, we’re likely to see more malicious activity, not less. Which makes right now a perfect time to:

  • Have conversations about online safety with friends and family
  • Share tips in plain language, without technical jargon
  • Reinforce that breaches aren’t isolated events; they’re part of a much larger pattern

Security awareness shouldn’t be limited to IT pros. The more people understand how attackers operate, the less likely they are to fall for scams.

So yes, talk to your kids, your parents, and your friends. Make security part of normal life. And if you get an eye roll or a “Yeah, yeah, I know” in return, you’re probably doing it right.

This article was updated in September 2025