Numerous companies are actually perpetrating these attacks via employee machines they don’t know are compromised. This could easily be your company and it could prove a lot worse for your brand than if you were merely the object of the attack. The victim however, whether they know immediately or not, can trace it back to a company or legal entity, and are then in a strong position to sue for damages. Your brand will be tarnished if you launch an attack unwittingly, or via a disgruntled employee, says Intelliagg CEO.”]
Source: https://www.csoonline.com/article/3249568/ignorant-botnets-dont-become-a-victim-attacker.html