I'll make this quick and short. A survey with disturbing results showed that 90% of enterprises have been hacked and they are losing the battle.
And it appears they're not learning from this because 60% of them had been breached at least twice. Sophisticated malware as well as social engineering as key for such breaches.
It's just unfortunate that such a thing can be avoided but the education in this regard is severely limited. And most companies are too scared to admit it's going on.
And the recent rash of Android malware will only make it worse as more enterprise users go mobile with their work.