Publicly Available Already, That's Alright Then
Whatever happened to the organization's duty of care to protect PII in it's own database(s) whether it is available in some other organzation's data assets or not? Whatever happened to the notion of a zero trust network? After all, SANS was promoting those principals as recently as April 21 of this year ...https://www.sans.org/webcasts/zero-trust-to-secure-data-networks-113050
Biting the hand that feeds IT
