How to hold private companies accountable for data breaches

Another day, another data breach.

That would definitely be an apt catch phrase for 2017, with major, high-profile hacks or breaches coming with disturbing regularity. Equifax and HBO were all hit hard, and the WannaCry ransomware crippled infrastructure around the globe. Even Instagram wasn’t spared.

With every breach, another refrain is typically heard: That it was preventable. If only the people in charge had invested more in cybersecurity, or updated their systems, or simply weren’t incompetent, then the hack never would have happened. Yet those same people often face little or no direct consequences.

Some people want to change that. One of them is Todd Thibodeaux, CEO of CompTIA, a technology association that promotes standards and helps guide the IT industry. Thibodeaux thinks, when it comes to poor network security, accountability for private companies needs to happen at the highest level: the board of directors.

Joining the MashTalk podcast, Thibodeaux goes into detail how such an approach would work and shares his thoughts on why it feels like breaches and hacking — especially ransomware — have taken a sharp rise. He also takes a minute to clarify that there actually is a framework for cybersecurity standards that any company can use, but clearly not nearly enough do.

Follow MashTalk on Twitter.

You can subscribe to MashTalk on iTunes or Google Play, and we’d appreciate it if you could leave a review. Feel free to hit us with questions and comments by tweeting to @mashtalk or attaching the #MashTalk hashtag. We welcome all feedback.

Listen on Google Play Music

WATCH: This guy has 1,500 passwords, and a few tips for staying secure

Https%3a%2f%2fblueprint api production.s3.amazonaws.com%2fuploads%2fvideo uploaders%2fdistribution thumb%2fimage%2f82008%2f502ecf28 56d3 4016 830c 530163c2d0f1

{“player”:{“description”:”Yes, that’s a lot of passwords.”,”image”:”https://i.amz.mshcdn.com/ydG7aP_5y1s2X3wlT4-yCq6I0GA=/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fvideo_uploaders%2Fdistribution_thumb%2Fimage%2F82008%2F502ecf28-56d3-4016-830c-530163c2d0f1.jpg”,”mediaid”:”EmljLz80L6″,”preload”:false,”title”:”This guy has 1,500 passwords, and a few tips for staying secure”,”sources”:[{“file”:”https://vdist.aws.mashable.com/cms/2017/10/daef5c23-8fc7-e8f3/hls.m3u8″},{“file”:”https://vdist.aws.mashable.com/cms/2017/10/daef5c23-8fc7-e8f3/dash.mpd”},{“file”:”https://vdist.aws.mashable.com/cms/2017/10/daef5c23-8fc7-e8f3/mp4/1080.mp4″},{“file”:”https://vdist.aws.mashable.com/cms/2017/10/daef5c23-8fc7-e8f3/mp4/720.mp4″},{“file”:”https://vdist.aws.mashable.com/cms/2017/10/daef5c23-8fc7-e8f3/mp4/480.mp4″}]},”options”:{“disableAds”:false,”disableSharing”:false,”nextupAction”:”autoplay”,”embedUrl”:”http://mashable.com/videos/blueprint:EmljLz80L6/embed/?player=offsite”,”standaloneUrl”:null,”post”:{“url”:”http://mashable.com/2017/10/03/cyber-expert-has-1500-passwords/”,”date”:”2017-10-03T20:18:41.085Z”,”bp_id”:58660,”wp_id”:null}},”advertising”:{“params”:{“keywords”:”tech,facebook,twitter,linkedin,cybersecurity,hacking,username,logins,passwords,cyber,ondrej krehel”,”sec0″:null,”sec1″:””,”prc”:””}},”analytics”:{“labels”:”tech,facebook,twitter,linkedin,cybersecurity,hacking,username,logins,passwords,cyber,ondrej krehel”,”videoSeriesName”:null}}

Every editorial product is independently selected by Mashable journalists. If you buy something featured, we may earn an affiliate commission which helps support our journalism.