It looks like the reason for the hack of JPMorgan is a basic hack.
The routine check caught it, but did not find the problem in the first place.
$250mil spent on cyber security but did not complete the actual update on one machine.
Arstechnica says there was a missing two-factor authentication configuration on their server.
It is always the due diligence that gets you, Target was caught because of not following its data and not closing down the malware that was found.
Due diligence – We push due diligence with our solutions