Trustwave study of data-breach problems last year found the primary way they got in was through third-party vendor remote-access applications or VPN for systems maintenance. Only 16% of the 312 companies managed to detect the payment-card data breach on their own. 29% of attacks against these businesses traced to originating in the Russian Federation. The majority of the attacks had wholly unknown sources since they originated through Internet anonymity services. In one case from Europe last year, a payment service provider was hacked and multiple servers and a wide-area network of more than 1,000 hosts were attacked.”]