This article is interesting to me as one of the hard parts to explain to C- and board level is real, human cost of data breach. This example can still be explained away (e.g., "well, our customers/employees do not live in such areas") but it is a step closer to explain why the $49.99 monitoring after a breach is a farce.