.. and all the security providers are facing uphill battles. Yes - it is inconvenient to use high security systems instead of email. Yes, it's easy to store files on drop box or Microsoft 365. Remember how long it took to convince people that virus scanners are important?
And it's not only the regulated data. Whenever a business transfers or stores customer data, it should act very responsibly. But it is the sad truth, that most businesses don't know (or don't want to know) anything about secure storage or transfer services. I am working with a company called 'closedXchange' and we are providing high security data storage and -transfer solutions. We are working hard every day trying to explain our customers, that they should never store or transfer confidential data out of their environment unless they can be 100% sure that it is safe. But how can one be sure that the data is not messed with? The only solution is point-to-point encryption: The data must be encrypted on one's own computer before it is sent or stored.
We will see a lot more break-ins, data theft and privacy violations. Tons of data will be lost to international competitors, be used in blackmailing and to clear people's accounts. As I am deeply involved within this environment, I am _very_ careful whenever it comes to my personal data. Believe me, I know that plenty of companies are losing data every day. That companies are being blackmailed and forced to buy their own data back from specialized black hats in eastern Europe and Asia. And - don't forget our very own agencies who are very interested in data too.
Yes - dropbox is all about convenience. But if they don't inform their customers about potential problems, they should be held liable.
My two cents,
m.
