The European Unions General Data Protection Regulation (GDPR) makes it harder to stop bad actors from stealing the personal information that the regulations are supposed to protect. The regulations often lack specifics about how to comply, and companies take actions that impede security out of fear of potential penalties. The threat surface on which I can be attacked has increased dramatically because of GDPR, says Caleb Barlow, vice president of threat intelligence at IBM Security. This could literally cause some of the largest privacy losses in history, says Barlow.”]