@Aphrodite @calamari When a company gets hacked and...

@Aphrodite @calamari When a company gets hacked and sued, they have to answer to "were you negligent in protecting against this or were you just unlucky?". Courts are incompetent in determining this, and companies are mostly actually negligent (because they don't want to pay for it), so we get these "best practices" checklists instead.

How do you legislate competence? Most companies can't even determine if the people they hire are competent!

Like 20 July at 2:39 | Wall-to-wall | Open on bitbang.social