99% of breached records were accessed through servers and applications, rather than desktop computers, notebooks, mobile phones, or portable media. 81% of affected organizations had been identified as noncompliant before being breached. Verizon recommends changing default credentials, avoiding shared credentials, user account reviews, application testing and code reviews, and agreeing on what represents suspicious or anomalous network behavior. At Verizon’s Webcast on why bad security breaches keep happening to good organizations, it happens Wednesday, April 15 at 9pm ET.”]