If the NotPetya attacks taught big enterprises anything, it was the importance of giving greater priority to the fundamentals of configuration hygiene.