Case Studies and White Papers on Network Security

I have been researching on Network Security White Papers available on the internet. Some I’ve read thoroughly and other skimmed them.

Here’s what I observed. There seems to be no papers that directly says that this company was hacked by this method (phishing, active attack, social engineering) and explains how they dealt with it. There are some papers that explains what they did, but never divulged the name of the company. Most of the papers explains only the best practices.

So, am I correct to say that this is what they natural put in white papers as not to divulge information about the company? I mean if they did, wouldn’t make their security measures public?