prosecute the company too.

storing passwords in plaintext should be persecuted & having unlimited access to customer databases.