How Do Some Companies Get Compromised Again and Again?
After a major attack, every organization should do some soul-searching. It’s important to evaluate how leadership failed to lead, how the company failed to invest, how the policies were inadequate and how the company culture around cybersecurity was insufficient to prevent malicious attacks through social engineering or other methods.
How Do Some Companies Get Compromised Again and Again? (securityintelligence.com)