7 Common Reasons Companies Get Hacked

Many breaches stem from the same root causes. What are the most common security problems leaving companies vulnerable?
Failure to check code before it's deployed
Leaving source code exposed
Failure to change default passwords
Poor Patching Practices
Human error in social engineering, phishing
Poor exfiltration control
Failure to recognize infiltration

Businesses suffering from security breaches span all sizes and industries, but they often make the same mistakes. Many cyberattacks in 2016 could be attributed to similar root causes.

To be fair, security pros continue to face the same challenges, explains Diana Kelley, global executive security advisor at IBM. The most common causes behind major breaches can be grouped into two categories, she says: humans and hygiene.

The human factor relates to employees' behavior and how they interact with enterprise systems. Cyber hygiene refers to how businesses keep their systems patched and updated.

Each of these broader terms encompasses several bad practices, mistakes, and overlooked steps that contributed to security breaches in 2016. What were some of the most common reasons companies got hacked last year? Read on to find out.

Next slide
Recommended Reading: