Successful phishing attacks revealed detection gaps in support and SOC teams, allowing unauthorized access without alerts.

Weak authentication and poor segmentation enabled privilege escalation from VPN access to full domain control.

Poor network segmentation enabled an attacker to pivot from internal access to full cloud takeover.