
With the development of technology and the facilitation of communication, the number of information available in the virtual environment has also increased significantly. Increasing amount of information and the ability to access data easier have created information security vulnerabilities. The fact that people and institutions are unaware of information security, as well as the lack of software to stop people who want to infiltrate the systems has damaged both people and institutions by increasing the number of attacks. These increases in attacks have made it necessary to follow new approaches by giving more importance to both personal and corporate information security. Basically, we can define information security as preventing unauthorized access, use and modification of information. If the confidentiality, integrity or access is damaged, the security of the information is at risk. In addition to the accessibility of information, there is also a danger of its availability. The availability of information means that it is ready to be processed at any time when it is needed. If there is an accessibility hazard, there is always a risk for using it. Organizations may bear high costs if the issues related to cyber security cannot be detected in a timely manner. Therefore, in order to reduce the risks and losses posed by cyber threats, both large and small businesses should adapt their information technology infrastructures and preferred security measures to their existing needs. Every institution must necessarily maximize information security by establishing the ISO 27001 standard. ISO 27001 is an ISO certificate that helps organizations keep and manage their and their customers’ confidential information secure. ISO 270001 is necessary for all institutions, especially in sectors such as finance, where information security is of more importance.
The weakest link in cyber security: Human

Regardless of the company size, the employees are the main factors in companies’ security vulnerabilities. When the employees fail to distinguish attacking links from secure ones and click on them, disable the security systems that appear when opening attached files, and include the malware hidden there into the system, almost all of the security measures lose their functionalities. At this point, it is vital that institutions put their employees through an appropriate training that includes security details related to mail security, Internet and storage devices. Trainings in the field of cyber security can prevent penetration of malicious software into the system, by reducing the associated risks greatly.

Threats are changing their forms
One of the most challenging issues related to cyber security is the ability of cyber threats to change their forms against existing security measures. However, for many years the security companies have been able to fend off cyber threats with programs that they revise regularly. Today, there is an obligation to produce “more proactive solutions” in against consistently evolving and renewed dangers. Now, the concept of security, which is shaped according to the needs for cloud systems, has become dominant. As cyber threats find new ways to circumvent these solutions, the security companies will also continue to update their existing solutions.
Artificial intelligence will be our savior in cyber security
Although the security companies are engaged in a relentless struggle against malware, they may find it difficult to cope with the increasing variety of malware every day. At this point, artificial intelligence, the hero of our time, comes into play. There are an infinite number of malicious software in the cyber world now, and these software are diversifying and expanding daily. Cyber security experts are trying to cope with these software, but the artificial intelligence seems to be the only superhero who can save us from the situation we are facing for now. Artificial intelligence acts as a “watchdog” in the process. By establishing information technology infrastructures that learn through machine learning, it is possible to move to an advantageous position against cyber dangers through artificial intelligence. In this way, it becomes possible to be informed before the danger occurs and be able to determine exactly what the danger is. Artificial intelligence applications are continuing to come into play more in information security field. Especially with the increase in digitalization in factories and the transition to 4.0, data traffic will also increase, making the use of artificial intelligence in cyber security inevitable.
Wearable technologies can lead to information security vulnerabilities
As the importance of information security is recognized more widely, the technological devices started to be subjected to stricter tests and scrutiny. A recent research has revealed that smart watches can also be used to hack into people’s information. Simple algorithms that work on smart watches can collect personal data and assemble them into a data set. Thus, information that should be kept confidential, such as the identity and address of the user, can be passed into the hands of third parties.
What precautions can individual users take?
How to ensure the security of people in a virtual environment is another important issue. Users should change their bank and e-mail passwords at least every 3 months by creating complex combinations and a verification option. They should prefer secure websites over those that are not 3D Secure in online shopping. In addition, they need to make sure that all devices through which they make online purchases or log into their banking systems are under the protection of an anti-virus program and that no pirated software is used.



