That's not how it works though. All the major breaches are either chance social engineering (that can happen anytime but can be 100% stopped by good staff training) or a new vulnerability being found in the platform and exploited before a patch can be applied. It's all a matter of timing on the latter given the number of major vulnerabilities across all platforms in the last few years that have been discovered, it's a constant battle.