I wonder if this was triggered by the 23andMe breach?
In that, it became pretty clear that the press and the public will blame a company if user accounts are breached even if the user had a weak/reused password.
Since then, companies kinda have a responsibility to protect the users data despite the user doing stupid stuff.
In that, it became pretty clear that the press and the public will blame a company if user accounts are breached even if the user had a weak/reused password.
Since then, companies kinda have a responsibility to protect the users data despite the user doing stupid stuff.