How can companies prevent and respond to island hopping attacks?