Databases house companies’ easiest-to-sell confidential data: customer lists, payroll records. Verizon Business’ computer forensics team reported that databases made up 30% of data compromises in 2008. Because sensitive information is often found in a single database, a single breach can lead to major damage. Database administrators tend not to be steeped in security practices, and the databases themselves are frequently tied to Web applications that have turned out to be easy to hack. Forrester Research found that database administrators spend less than 5% of their time on database security.”]
Source: https://www.darkreading.com/attacks-breaches/database-servers-candy-for-hackers