There’s no point in understanding what motivates attackers and how they work if you don’t understand what the payoff can be. What is the point of stealing millions of credit cards or millions of social security numbers? How can an attacker successfully cash in on all that stolen data?