“It is a classic ‘could have, should have’ scenario,” says Chris Morales, head of security analytics at Vectra. “The failure comes down to people and process, not necessarily technology. As long as a motive exists, attackers will attempt to compromise networks until they succeed.”