TJX has seen their stock value and sales increase since the huge data breach that was announced in January 2007. Even after the largest breach in history, they apparently still are failing to address significant security vulnerabilities. The result is that data, usually personally identifiable customer data, is allowed to walk out the door almost at will. The problem really boils down to this: if people on the inside know there is a problem that can cause substantial harm or inconvenience to customers were their privacy to be breached, isnt it in the best interests of society to have someone jump in and force the issue? Maybe not.”]
Source: https://www.csoonline.com/article/2135518/do-we-need-whistle-blower-laws-in-security-.html