I hope...
the criminal investigation of this breach is focusing on the lack of security and therefore may expose TalkTalk as the real culprit.
On one hand, I hate the hacking we all hear about every day. On the other, when hacks expose embarrassing security fuck ups made by people who should know better, I can only hope other corporate entities take notice.
Ultimately, hanging Dido out to dry in a criminal court for negligence is probably the only thing that might make them take notice. If Safe Harbor is illegal, then surely this level of technical stupidity should be criminal as well.
Biting the hand that feeds IT
