Social media giant Facebook recently announced 30 million users' personal information was compromised.

That’s terrible, right? Well, factor this: Facebook has 2.2 billion active user accounts, and the initial reports indicated the hack only impacted 90 million.

Most companies freely acknowledge that a data breach event would cause significant impact to their business. If a company processes, stores and accesses sensitive customer information (i.e. medical records, credit cards, social security numbers, etc.), it would also acknowledge that it already knows what types of data the criminals mostly like want to steal … or hold hostage.

Passwords do not receive the respect they deserve as a first line of defense against threats. Roughly 60 percent of confirmed data breaches involve weak, stolen, or default passwords. Most businesses provide little to no training for employees around selecting secure passwords, so it's no surprise that "123456", "password", "qwerty", and "Star Wars" are commonly used.

An organization's network contains a wealth of information that can help identify threats. However, collecting, reviewing, and responding to this information is a monumental challenge for most. There are many threat management solutions available, but it’s important to remember that one size does not fit all.

Criminal hackers aren’t nearly as focused on your business' administrative accounts as they are individual employee accounts. Why? Because admin accounts rarely have direct access to highly valuable information like social security numbers, protected health information, etc.

A recent global study by the Ponemon Institute finds that the financial damage caused by a data breach has risen by 6.4 percent in the last year and now costs companies an average of $3.86 million each.