Re: Another Incorrect Conclusion
Honestly, I would expect a company in that business, entrusted with some of the most sensitive personal data in existence, to take security far more seriously than it appears from this breach. That the exposure went on for years is simply unfathomable.
Not so surprising, really, if you understand US corporate mentality. The business plan is to catch and corral more horses in the barn. Nobody dare suggest that serious money be spent on a stronger lock.
Until, of course, the door is breached. Then the lock department is held accountable.