How do laypersons (noobs) like me learn about this stuff? Like Wired magazine technical level.

I've just started Darknet Diaries podcast. So great.

When I worked on electronic medical records, I assumed it was just a matter of time until we were hacked (too). All the most banal reasons: many vendors, shared passwords, root/admin access, etc.

I imagine things haven't improved much since.