Cert-UK has released data recently which paints a picture of rapidly growing cyber crime combined with the increased popularity of easy to use "off the shelf" hacking tools.
Cyber data released recently shows variations and the NTT report released at the end of April 2016 showed a decrease in DDoS attacks while Cert-UK has seen that number increase.
Taking a helicopter view what is clear is that as hacking and cyber attack becomes de-skilled the volume of attacks is rapidly increasing.
Cert-UK saw the greatest increase in Phishing as a form of attack and predicted that in 2016 Ransomware would dominate. In addition there is a very high probability of a major cyber attack on national infrastructure.
IT departments often bamboozle their line managers in respect of the security or otherwise of their systems and processes - especially if the line managers are not digital natives.
In fairness to IT departments many of the core risks are entirely people related and have no technical aspect to them but either way the knowledge that most internet connected IT systems are extremely vulnerable in spite of the machine that goes "ping", is reaching a much broader audience.