I think hacking will always happen with an incentive, but with better security such as two step verification like authenticators, email confirm, phone txt etc as well as IP based, tied to a tablets UDID's etc, is it really going to cost more to run CS on those cases than you'd get in revenue...