Epic Mossack Fonseca breach tied to basic patch management failures

Mossack Fonseca failed to understand even basic information security and privacy principles and lacked the IT management skills or oversight necessary to ensure that they were adequately protecting their own and their clients’ information.

MedStar attack apparently enabled by unpatched software

Attackers who find vulnerable servers can deploy ransomware without any action on the part of users in the targeted organization.