Attackers usually use stolen login credentials to read through protected documents or steal the information even though it is in transit among two network devices. Physically protect your servers as well as your equipment. Keep them in a safe location, and do not grant general use of this area https://www.researchgate.net/publication/365308473_Development_of_Cyber_Attack_Model_for_Private_Network