Sacha Ligthert 🇳🇱🇬🇧#infosec at it's finest.
Viss@ligthert ahh yes - when legal is in charge
Grendel@grendel84 @ligthert do you believe that compliance has in any way, ever, prevented a hack or stopped the leaking of user data? because if you do, i invite you to check out okta, sony pictures, equifax, solarwinds, colonial pipeline, OPM, cloudflare, kaseya, or a whole host of others that were 100% compliant but still got turned inside out like a gym sock.
That's a logical fallacy.
It's like saying "All these companies used MFA and still got hacked, therefore MFA has never prevented an attack"
There's no way to know how many hacks compliance requirements have stopped.
I agree that most of it is BS, but with fines involved it st least motivates companies to try