The external threat is one of the most high-profile risks that organisations face. Representing more than 80 percent of attacks today, external attackers look to take advantage of network and user weaknesses via malware, phishing, and advanced persistent threats (APT).Command and control (C2) malware (e.g., ransomware and Trojans) as well as malware designed to exfiltrate data are two of the three most common threats1. These processes find their way into your organisation via email phishing scams or compromised websites that are laden with malicious code and are designed to infect your endpoints.