My feeling is companies leave themselves open by allowing everyone access to the network so the idiot who has been told 50 times not to click on a link in a suspicious email will still do it or hand out passwords to anyone on the phone. Even if you run a tight ship you’ll give access to some contractor who doesn’t.
My takeaway from stories like this is that it was always really easy to crack in to companies, but most knowledgeable people had better things to do.
Most knowledgeable people are employed
My feeling is companies leave themselves open by allowing everyone access to the network so the idiot who has been told 50 times not to click on a link in a suspicious email will still do it or hand out passwords to anyone on the phone. Even if you run a tight ship you’ll give access to some contractor who doesn’t.
A poor IT department is working overtime with limited funds for staff trying to fix stuff while bosses breathing down their necks.
I mean, pretty much