Mapping a Hack

Social engineering continues to dominate breach tactics because it exploits the weakest link—people. Wilkinson’s "Jane Hacker" example underscores how a well‑crafted phishing email and a malicious macro can bypass technical defenses, granting attackers a foothold to move laterally. Organizations that invest only in perimeter security overlook this human factor, leaving them vulnerable to low‑effort, high‑impact compromises.

The cyber‑crime landscape has shifted toward service models that lower the entry barrier for malicious actors. Ransomware‑as‑a‑service (RaaS) packages sophisticated encryption tools for a flat fee—often around $100—while offering affiliates dashboards and payment processing, turning ransomware into a scalable business. Similarly, initial‑access brokers (IABs) specialize in breaching networks and then selling that access to other threat actors, effectively creating a supply chain for cyber attacks. These models accelerate the frequency and diversity of incidents, forcing defenders to address not just technology but also the economics of crime.

Defending against such threats requires a blend of awareness, automation, and strategic tooling. Simple measures like deploying canary tokens can alert security teams to unauthorized access attempts instantly. Exposure‑management platforms help organisations inventory and remediate publicly exposed assets before attackers find them. Coupled with robust HR‑management processes—such as verifying employee communications and limiting macro execution—these controls raise the cost and complexity for attackers like "Jane Hacker," turning potential breaches into missed opportunities.