“The simplest of things, which every enterprise fails at.”
Overworked Sysadmins and narrow windows to update are what criminals feast on.
No system is invulnerable, but its the law of averages. The system that is 90% patched is going to have many less problems than the system that is 20% patched.
And you better have good backups with forever tapes in the mix.
Most people just back up their data, thinking it cheap and easy...meets all audit requirements.
Then they cannot restore their platforms/applications when everything goes tits up. Because they never actually ran a real-world failure test. And have no real-world experience...even though they’ve been in IT for a decade or more.
I’ve seen dozens of examples. It crushes them.