Call me naive, but I am puzzled that the United States government and private industry are not up to the task of thwarting these cyber incidents. I know we can’t prevent crime until we know who and how but we seem to be flat-footed. It does not good to ask “what happened?” if we can’t do more in the way of prevention. Are we do cheap to buy the best protection? are we too complacent to adopt policies that enforce better data security? I know most of these incidents are due to lax security so it appears that we are not really addressing individual responsibility instead of relying on transferring losses to insurers. Maybe insurers should increase deductibles so that those affected have to put up some of their own money to fund recoveries?
Call me naive, but I am puzzled that the United States government and private industry are not up to the task of thwarting these cyber incidents. I know we can’t prevent crime until we know who and how but we seem to be flat-footed. It does not good to ask “what happened?” if we can’t do more in the way of prevention. Are we do cheap to buy the best protection? are we too complacent to adopt policies that enforce better data security? I know most of these incidents are due to lax security so it appears that we are not really addressing individual responsibility instead of relying on transferring losses to insurers. Maybe insurers should increase deductibles so that those affected have to put up some of their own money to fund recoveries?