Companies aren't changing their ways in reaction to scandals, cyberattacks