10,000 SSN Numbers exposed

I just read on the The Daily wtf that on the State of Oklahoma’s Department of Corrections website they had a serious flaw, where any user with a basic knowledge of SQL could modify the URL to retrieve whatever the hell they pleased from their database (which includes Social Security numbers of Oklahoma residents).

Apparently, the guy who noticed this flaw contacted the Department of Corrections, and they did a Mickey Mouse job of fixing the problem: I think they basically changed the text case from upper to lower or vice versa of some of the field names. What a serious fuck up! They only took the website down after the same guy showed them that not only was it possible to display the sensitive information of the registered sex offenders, but that of the employees and Oklahoma residents.

If I was the guy who did this job I would have crapped in my pants. How do heck did they get the balls to perform such a crappy job? Did they truly believe that nobody would notice?