Comment by wil421

4 months ago

“2) seen as a cheaper alternative to someone who knows anything about security - "why hire someone that actually knows anything about security when we can just pay a pittance to strangers and believe every word they say?"”

It doesn’t make sense, companies with less revenue aren’t the ones doing this. It’s usually the richer tech companies.

2 comments

wil421

Reply
mmsc  4 months ago

>It doesn’t make sense, companies with less revenue aren’t the ones doing this. It’s usually the richer tech companies.

Because for some reason, it's larger tech companies that love to bean-count their way through security.

  • ozim  4 months ago

    It is also larger tech companies that have basically infinite attack surface.

    So my argument is that it does not matter how much they spend on security they will get hacked anyway, only thing they can do is keep spending in check and limit scope of hacks.