Step 1. Hacker Gains Access to an Organization's Network
How? Hacker gains access to your organization's network with legitimate credentials obtained from using phishing, compromised credentials, etc. Remember Equifax, Uber, Yahoo and many more that were recently hacked. Hacker now logs into production database server with stolen credentials.