[ryandrake]

> And then, we still have yet to punish or hold accountable any large party who made things this way. Until we do that, keep expecting this.

This is the key. No incentive to change. It's always "the hacker's fault" and never "the manufacturer's negligence" or "the developer's carelessness" or "the user's gullibility." Combine this with the currently-prevailing Don't Blame The Victim mentality, and it's the perfect environment for never improving cybersecurity.

[myself248]

But yet, the pigs who built the houses of straw and sticks got eaten. The pig who built the house of bricks is seen as responsible, even though it took longer and cost more; he made the right choice.

The wolf is seen as ever-present. Failure to consider the wolf when choosing building materials has consequences.

It blows my mind that this story has been part of our culture for centuries, yet we apply exactly the opposite model to cybersecurity.

[IsTom]

But have you thought about the bonus you can get by reducing house building costs in Q3?

[stackskipton]

Yea, CyberSecurity will get fixed when companies are held responsible to the point that data breaches have severe impact on bottom line.