A security consultant says most companies face the same cyber threats as the real ones. Social engineered malware provides the No. 1 method of attack (not a buffer overflow, misconfiguration or advanced exploit) Password phishing attacks are a close second to social media threats. Unpatched software and phishing are the most common threats, with software with (available but) unpatched vulnerabilities. Facebook, Twitter, LinkedIn, LinkedIn and other social media programs are among the most likely to be exploited.”]
Source: https://www.csoonline.com/article/2616316/the-5-types-of-cyber-attack-youre-most-likely-to-face.html