A recent cyberattack targeting U.S. government employees working with nuclear weapons illustrates the vulnerability of large organizations. The attackers exploited a previously unknown vulnerability, called a zero-day flaw, in Internet Explorer 8. Many government departments are still using outdated versions of Windows and IE, due to the huge expense of upgrading thousands of people to newer versions. Researchers agree that the command-and-control (C&C) servers in the latest attack have attributes similar to those used in previous assaults originating from China.”]