Emergent Chaos

It seems that Lexis Nexis's breach was because of bad passwords:

The incidents arose from the misappropriation by third parties of IDs and passwords from legitimate customers.

I don't mean to be snide. No, that's a lie. I do. It's 2005. You're making all this data available via a password? Are your auditors telling you that's ok? E-Trade is giving RSA tokens to customers. AOL is making them available. AOL. AOL which charges $24 a month. And then an extra $9.95 one time fee for the token, and $1.95 a month for support.

That's $1.95. As the ad says, "Less than the price of a cup of Starbucks coffee."

Now, I don't know what Lexis/Nexis charges for access to their services, but sentences like "RiskWise services are priced per transaction and is determined by transaction volume, data sources, integration and custom development" tend to cause me to think it may be a little more than $24 a month. I hate using words like negligence or culpability, or maintaining an attractive nuisance, but only because my lawyer friends tell me I keep messing up their meanings, and I know how annoyed I get when they mess up things like "mixing function" or "TCP encapsulation."