| 1 | Automated exploit of a known vulnerability |
| 2 | Malicious HTML email |
| 3 | Reckless web surfing by employees |
| 4 | Web server compromise |
| 5 | Data lost on portable device |
| 6 | Reckless use of Wi-Fi hot spots |
| 7 | Reckless use of hotel networks and kiosks |
| 8 | Poor configuration leading to compromise |
| 9 | Lack of contingency |
| 10 | Insider attacks |