Originally Posted by kd3pc
You can do everything correct and one vendor that has your info can make it all a moot point...from then on...
just this week an outfit, Epsilon - they just send email for clients of B&A, grocery chains and the like lost control and although it was "only email and your name" - seems to me that is all they need to spam you or phish you...
At least once a week this happens, many do not have to report, as the breach may have affected ONLY 100's of thousands....and the threshold to report may be millions, or their industry is not subject to the reporting laws.
I am a sys admin so I know all about what happens day to day. Absolutely, you are only as secure as the weakest piece of hardware/software that's connected to the net. Let me qualify with, I was talking about on a personal level/regular user, take steps to do things "you" can control.