Maybe the board and shareholders of big companies need to be held accountable financially instead of being able to hide behind legal constructs.

Companies will only care if they have a reason to. People need to start caring about their privacy and security and be willing to change product if they have to. We can blame companies and insist they start caring, but this makes no difference to them, people complain for a while and then they move on and the earnings remain unchanged.

I think we’ll start seeing consulting agencies advertise how many vulnerabilities that can resolve per million token, and engineering teams feeling pressure to merge this generated code.

We’ll also see more token heavy services like dependabot, sonar cube, etc that specialize in providing security related PR Reviews and codebase audits.

This is one of the spaces where a small team could build something that quickly pulls great ARR numbers.

People need to start voting in politicians who will meaningfully punish corporations who don't.

Nah. They care about profits only, the sooner the better, so everyone can cash out and move to their next “venture”

The problem is that they don't "need" to. There's no consequences for not caring, and no incentive to care.

We need laws and a competent government to force these companies to care by levying significant fines or jail time for executives depending on severity. Not fines like 0.00002 cents per exposed customers, existential fines like 1% of annual revinue for each exposed customer. If you fuck up bad enough, your company burns to the ground and your CEO goes to jail type consequences.

And on that day, Satan will be skating to work.