What’s Making Your Company a Ransomware Sitting Duck

What’s the low-hanging fruit for ransomware attackers? What steps could help to fend them off, and what’s stopping organizations from implementing those steps?