Scott Alldridge

And I think there are, again...

um, they would only have certain disclosure that would apply depending on what kind of breach, but if it's just their intellectual property, then, then they probably aren't going to let people know.

Yeah, exactly.

It, it, it's not a comforting sign.

It's a bad signal to your customer base.

Um, yeah, it's not a good look, uh, particularly if you're, you know, a financial institution, you, you know, you really don't want that to happen.

And

So some of your safest, you know, where you've got a lot of compliance, a lot of people are in this fool businesses that, well, we got to be compliant.

My IT guys have filled out a list and they checked a bunch of boxes.

And so there's a little bit of a false sense of security there because just because you're checking boxes that you have a security policy, that doesn't necessarily mean that you're keeping your system safe.

Right.

Right.

You got to actually back it up with what we call, you know,

attestation of controls, right?

We actually have to test those controls and know that those systems and tools are in place to really do what they say they do.

So that's, again, not easy to do.

Yeah.

And I would say, again, that's probably only getting notified on a small percentage.

Which is crazy because there's already so much.

There's so many.