Anonymous, LulzSec, and other indie hackers in the “AntiSec” movement have made that point loud and clear this year. Hackers are exposing security flaws and dumping exposed data, email spools, other sensitive information online. The HBGary hack was “the turning point for me,” says Paul Henry, forensics and security analyst for Lumension. “That definitely got my attention: It showed me that anybody connected to the Net is a potential victim,” says Henry. The three main attack vectors used were remote-file, SQL injection, and cross-site scripting (XSS)”]
Source: https://www.darkreading.com/attacks-breaches/five-steps-to-protect-against-lulzsec