A recent Kaspersky Lab survey found that 40 percent of organizations fail to put preventative measures in place because they think their Internet service provider will protect them. A third of companies fail to take any type of preventative action because they believe they wont be affected by DDoS attacks. Many companies make assumptions with everything from password policies to their security architecture. One of the most dangerous is that they are not thinking about whether there are other ways a hacker can try to get around it.”]
Source: https://www.csoonline.com/article/3155424/dangerous-assumptions-that-put-enterprises-at-risk.html