[gleenn]

I believe they're suggesting the people storing the plaintext passwords. Who else would it be?

[hooverd]

I guess there's no one person to hold accountable. They probably just get a small fine and move on.

[cwillu]

The engineers, just like any other real engineering field.

[Loughla]

Whoever is in charge. That's who you charge. They're the boss. They pay the penalty.

[lotsoweiners]

They might not know what is being done. They might not even know it is a bad practice. I work in government and you wouldn’t believe how many people are clueless about good practices.

[countonit]

Ah yes, the classic "ignorance of the law is a perfectly valid reason to break the law" defense, which famously works all the time.

[thrill]

It's literally their job to know.