By Ephraim Oseji

As digital platforms increasingly shape how people bank, shop, work and communicate, cybersecurity threats are expanding in scale and sophistication, exposing individuals and organisations to heightened risks, a cybersecurity expert has warned.

Speaking on the evolving nature of cybercrime, Samuel Bemi, a cybersecurity professional with an MSc in Computing from the University of Roehampton, United Kingdom, and certifications including CompTIA Security+, Certified Ethical Hacker (CEH) and Certified Information Systems Security Professional (CISSP), said the same internet that has driven convenience and efficiency has also created fertile ground for cybercriminals.

According to him, cybercrime now affects both individuals and businesses, making awareness the first and most critical line of defence against digital attacks.

Bemi identified spoofed websites and typosquatting as some of the most common threats, explaining that cybercriminals often create fake or slightly altered web addresses that closely resemble legitimate platforms in order to steal login credentials and payment details from unsuspecting users. He added that pharming poses an even greater risk by redirecting users to fraudulent websites even when the correct web address is entered.

He also warned about the growing use of direct social engineering attacks such as vishing, which involves fraudulent phone calls, and smishing, carried out through deceptive text messages. These tactics, he said, exploit fear and urgency to pressure victims into disclosing sensitive information.

In corporate environments, Bemi noted that more targeted attacks such as Business Email Compromise (BEC) and whaling have become prevalent, with cybercriminals impersonating trusted authorities, vendors or senior executives to deceive employees and top management.

Beyond these visible threats, he explained that several cyber risks operate quietly and are often difficult to detect. These include brand impersonation, which exploits trust in well-known organisations, and watering hole attacks, where websites frequently visited by specific groups are compromised to infect users. He added that credential enumeration attacks are used to test valid usernames in preparation for larger-scale intrusions.

Bemi further cautioned that cyber threats are not limited to online interactions alone, noting that physical security lapses such as shoulder surfing, where attackers observe screens or keyboards in public spaces, also pose serious risks.

He said persistent threats including malware, spyware and adware continue to damage systems, monitor user activities and expose devices to further compromise, often without the victim’s knowledge.

Despite the growing complexity of cyber threats, Bemi stressed that many attacks are preventable through basic cyber hygiene. He advised the use of strong and unique passwords, two-factor authentication, regular software updates and cautious online behaviour as effective measures for reducing risk.

According to him, understanding modern cyber threats is no longer optional but essential for safeguarding personal and professional digital lives in an increasingly connected world.