Organizations rely on their information security departments or engage outside consultancies to try to protect against attacks, but preventative efforts fail with alarming frequency, even for the largest companies with the most well-funded cybersecurity efforts.