@Pascal Monett,
I have seen several of you postings here on the Inq, and of them all this is the 1st comment that you have actually said that is getting to the point without de-facing my beloved nation.

And thanks for that.

Also to impress upon what Pascal Monett stated above, those responsible for such sensitive data are/should be responsible for 100% reparation to all victims affected by that data theft.

Lets look at a wonderful thing called "Security Taxonomy".

8. Mobile Device Security 
(Don't have them)
7. Encryption
(On everything even non-mobile devices)
6. Security Mgt.
(Someone that can actually thump their noggins and figure something out)
5. Internal Security
(Should be a role model for #6)
4. ID & Access Mgt.
(Make things harder yet manageable by the user to access)
3. Perimeter Security
(Its a military base, enough said?)
2. Storage Security
(#7 again, and no hidden shares etc.)
1. Physical Security
(Don't let the stuff leave the base...)

Cheers!

Apparently, I feel that nothing short of a few public hangings (not an allegory here) will ever do anything meaningful.
There have been way too many people put at risk to accept anything more from the government at face value. They should be made to crawl over hot coals before any declaration. If they are willing to take the pain, then maybe it's worth listening to.
A government's main job is to PROTECT its citizens, NOT put them at risk. If it takes a few shootings to re-establish that fact, so be it.