that is on the company's for their shoddy security - its clear they haven't learnt from ANY of the major hacks over the last decade (which worries me about how much data these companies now are "protecting").

The Storage is still supposed to be secure however - to continue Sarmatian's already dodgy analogy - the hackers picked the lock after bypassing the alarm - it still isn't the victims fault at all