The Chief Information Security Officer (CISO) developed a robust plan to address both internal and external vulnerabilities due to an increase in ransomware attacks on the networks. However, the number of successful attacks continues to increase. Which of the following is the MOST likely failure?

1. The company did not blacklist suspected website properly
2. The threat model was not vetted properly
3. The IDS/IPS were not updated with the latest malware signatures
4. The organization did not conduct a business impact analysis