Site security is an issue for webmasters and users alike, but, when I was reading about a non-technical security issue,
[webmasterworld.com] it reminded me that one of the weak links could be employees, either deliberately, or inadvertently revealing details to a bad actor. It can happen as a single record, or as a database.
I realize we shouldn't reveal our own tactics for preventing data being revealed, but it's worth a reminder to raise the bar to make it more difficult for accidental data release. Theft by an employee is entirely different, and i'm not sure how that can be prevented 100%.