I blame these companies that setup legacy systems in the 90s and are still using the same hardware/software in many cases.
For your information, 99% of "hacks" aren't people breaking encryption or finding some crack, it's people being given access via social engineering or phishing.
The insurance company I work for encrypts billing info but all claims and claim data (names, ssn, ECT) are stored in flat files on computers that were built in the 90s. There's no point to encrypting billing info if the same info is unencrypted once you file a claim. I think credit card companies require encryption so that's the only reason why the billing server are encrypted.
I blame these companies that setup legacy systems in the 90s and are still using the same hardware/software in many cases.
For your information, 99% of "hacks" aren't people breaking encryption or finding some crack, it's people being given access via social engineering or phishing.
The insurance company I work for encrypts billing info but all claims and claim data (names, ssn, ECT) are stored in flat files on computers that were built in the 90s. There's no point to encrypting billing info if the same info is unencrypted once you file a claim. I think credit card companies require encryption so that's the only reason why the billing server are encrypted.