Hacker News new | comments | show | ask | jobs | submit login

I am not normally in favor of legislation, but I'd be okay with a fine for US-based companies that leak and expose this kind of data. Specifically a harsher fine for cleartext or anything less than bcrypt.

nothing is gonna happen to Groupon (or the indian subsidiary). OTOH, Dropbox just got hit with a class action lawsuit.

How about something similar to HIPAA?

I worry, though, that it would end up making things more difficult for developers while not improving things for the end users - much like the European/Dutch cookie law.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact