Most email attacks enabled by easily obtained credentials

Because sign-in info is widely available, disaster recovery is crucial, says David McCrystal.