So I've been working on my work term report the past few days (which isn't nearly done and needs to be by tomorrow so my supervisor can read and approve it), and I stumbled upon an interesting story:
http://www.bbc.co.uk...nology-24821528
Basically, Adobe got hacked, info from 150 million accounts stolen, someone from a security company analysed the hashed passwords, determined the top passwords in the group. 'password', '123456', and 'adobe123' are among the top.
Just goes to show if you don't force people to choose strong passwords, they won't.
EDIT: Just a mini rant to add to this. I've been working with my university IT help desk since September, and the amount of calls I get complaining that they're forced to change their password every six months is.. ugh. It's because of this! People think that changing your password doesn't help with security at all but if you were to fall for a phishing scam, or if your information was stolen like in this story, you may very well never know because they don't want you to, and they'll have access to that account until you change your password. And using the same password across different sites could cause havoc on your life, especially email addresses, facebook, and online bank accounts.