Russia-linked hackers tried to infiltrate the US Senate, leveraging phishing attacks to harvest access credentials. Security professionals should not get distracted by the media frenzy that these revelations created and instead focus on the real lessons. Organizations spent a combined $150 billion on cybersecurity in 2015 and 2016, says Gartner. 81% of hacker-initiated data breaches involved weak, default, or stolen passwords, he says. Instead of the old adage “trust but verify,” the new paradigm is “never trust, always verify””]