Comment by mlyle
2 months ago
Organizations price future, nebulous things all the time.
Imagine a possible downside or two, imagine a probable risk, multiply, discount.
2 months ago
Organizations price future, nebulous things all the time.
Imagine a possible downside or two, imagine a probable risk, multiply, discount.
Sure, but give some specific values. What potential damages and potential risk multiply to more than $10k?
Prominent youtuber doxxed and killed; terrible press extended for an extended period by litigation. 1 in 5000 but very high cost.
Large scale data leak and need for data leak disclosure. 1 in 3, moderate cost.
Bug report saving engineering time by giving clear report of issue instead of having to dig through telemetry and figure out misuse and then identify what is going on, extents of past damage, etc. 3 in 4.
You think that being able to get someone's email address (most likely a business email but let's pretend it's a personal email) has a 1 in 5,000 chance of being turned into enough personal information to track down AND that someone would use it to kill someone?
Millions of usernames and emails are leaked every month; if this was the case you'd be seeing these murders in the news every week.
1 reply →