Do these huge companies just not spend enough on security? Or are these breaches inevitable? And once breached is the data stolen so quickly nothing can be done? Or again are they not spending enough to detect & take offline their sites so the amount of data lost will be minimized?
Users can probably take some of the blame. http://www.vanityfair.com/news/2016/06/mark-zuckerberg-terrible-password-revealed-in-hack