Last quarter, a prominent fintech startup suffered a catastrophic data breach. It wasn’t a sophisticated nation-state attack involving zero-day exploits. The vulnerability was embarrassingly simple: a mid-level engineer had accidentally