This is a common result for every organization that has a data breach. The Equifax Breach is just one of many that have the similar root cause. What is interesting is that many organizations do not use the findings of the Equifax Breach to enhance their own Risk Management and Cyber Security Controls. SC media reports today data breaches up 400% and the Identify Theft and Research has just published their January 2019 Data Breach List which is more disturbing because many organizations do not even know the extent of how much PII or PHI data was compromised. We seem to be going backwards and not forwards and it appears that the problem will get worse before it gets better. At the RSA 2019 conference, Jason Escaravage, from Booz Allen Hamilton, summed up one of the issues nicely… “compliance isn’t enough. You need to be aware of the threats that are likely to… that your organization is likely to encounter or experience and really getting a threat-focused mindset into the organization”. Entire Article Here. This is just a starting point. We have a long way to go.