Re: Reporting will do nothing! We need pain for the penny wise and pound foolish
I think you're right, the best way to mitigate this and get companies to screw the nut with good security practices. I think the best way this can be done is with insurance companies refusing to pay out when breaches do occur, and I'm surprised with the massive increase in ransomware over the last couple of years insurers haven't been more stringent on their coverage requirements.