Fully certified, completely vulnerable — three chinks in the compliance armour

Fully certified, completely vulnerable: three chinks in the compliance armour

Capital One, SolarWinds, and Schrems II were all fully certified when they were completely breached. Three case studies in the gap between passing an audit and actually being secure — and why that gap is structural, not accidental.

June 19, 2026 · 9 min · Kartik Sankhla