From the Washington Post
Panera’s data breach puts attention on risks of loyalty programs
by Rachel Siegel
Panera Bread this week became the latest company hit by a data breach, acknowledging that customer information was vulnerable on its company website for at least eight months....
Chris Hoofnagle, a professor of information and law at the University of California at Berkeley, said companies want access to personal information but are often unwilling to pay the price of ensuring its protection.
“Security is difficult and expensive, and no one wants to do it,” Hoofnagle said. “There’s the miracle of making it possible that you can order a sandwich [online]. That’s hard enough! And then people come along and say, ‘What about security?’ ”