Employing sophisticated scams involving social engineering, email phishing, and the harvesting of employee passwords, attackers have pilfered millions of dollars from some of the world largest corporations - all while bypassing traditional hacking safeguards by simply avoiding the use of malware.