“What’s the worse that could happen?” is a conversation every software professional should be having with business leaders frequently. If they wanna do something risky as fuck, leave a paper trail and CC in legal.

The only reason there aren’t 10x the number of these shitshows is because of technical folk being super paranoid and pushing against a managerial structure who either don’t know or don’t care about the risks and consequences.

https://www.bleepingcomputer.com/news/security/genetics-firm-23andme-says-user-data-stolen-in-credential-stuffing-attack/