IT Business Edge published an article about the fallacy of relying on encryption to avoid Anthem-like breaches.

Kachina Shaw quotes me on the complexity of breaches like this:

Even if Anthem had encrypted its databases on disk, the backups could have been stored unencrypted. It’s also possible that an update to a data transformation process for a big data initiative neglected to anonymize social security numbers. It even could have been as simple as a developer’s laptop containing sample data being stolen

Read the complete article on IT Business Edge