It is a pity that there's no "watchdog" for web services.
<rant>
Two companies get fined because the 3rd party service they used wasn't secure. At the least, the 3rd party service should have been fined. I'm truly puzzled... banks, stores, etc. never take a hit from any watchdog in this country. They get some negative media attention and that's about it and in the meantime, way too many people have had their personal info compromised.
At least in healthcare, Medicare <rolls eyes> can punish insurance and providers if personal info is compromised. Or they at least threaten to. But what the hell about all the non-healthcare?
Maybe I'm naïve, but I wonder if the threat of large fines would cause these companies to take data security seriously?
</rant>
And no, I don't feel better because of the rant. I'm just wondering what it's going to take before any company that has an 'Net connection will take security seriously.