On the one hand there are billions of stolen credentials, on the other hand, on average people reuse the password 4 times, if we combine the two numbers the probability that a cyber criminal gain access to our "secure" using our credentials is really high. Rainbow tables are becoming more sophisticated since the number of exposed passwords is incredibly high. We have to be prepared to react, we have to protect our sensitive information.
Cyber criminals leverage technology vulnerabilities and trickery to exploit the human-technology gap — by targeting sensitive passwords, data and applications regularly used by staff. Data theft is the goal of most recent breaches. Cyber criminals typically break into vulnerable systems and pivot between systems using stolen credentials or posing as a third-party contractor to gain access to valuable data.