yes and perhaps 10 out of 10 cyber attacks where data is leaked are actually just the companies with the databases selling them to the highest bidders or them just releasing the data on purpose with the cover of being hacked as an excuse to do an end around privacy and liability laws