Most organizations view their employees as their most valuable asset. They are the engine of the company that grows revenue and builds relationships with clients.
At the same time, most cybercriminals view employees as the path of least resistance. For businesses in North America, two of the top causes of the most serious data breach were careless / uninformed employee actions (59 percent) and phishing/social engineering (56 percent).
The hard truth is that well-meaning employees threaten data security every day, usually without realizing it. Cybercriminals know and exploit this fact every day. If they want access to clients, employee records or future plans for growth, social engineering tactics that target employees are often the easiest way to infiltrate an organization.