Here at My IT, we use tools to actively monitor the dark web for data breaches concerning our clients. We then present that information to our clients so they can act on it in a timely manner. This is all well and good, but often I hear the argument that information on old data breaches isn’t worth their time. Executives say those passwords have been reset or that that email is no longer in use. Another objection is that if hackers have not used that information by now, then they either won’t use it, or they already tried, and the info is no longer valid. However, there is a flaw in that logic.