Cybercriminals use the profile information of your users and organization to create targeted spear-phishing campaigns designed to trick your users and steal login credentials. In most instances, they utilize an e-mail address of a trusted officer in the company like the CEO, CFO, and/or a key person in Human Resources. Cybercriminals attempt to hijack accounts, damage your organization's reputation, or gain access to your network. Both the increase in ransomware attacks and the prevalence of phishing scams reflect cybercriminals' desire to pursue soft targets that lack the resources or the resolve to adequately protect their IT infrastructure.