said by jaykaykay:
It's hard to believe, after so long a time and so much education as most have gotten from somewhere that they continue to do that.
I'll bet you anything, that even in this day and age, the topic of password security is not taught in most schools across the world.
Hell, when I went through school (graduated from high school in 2005), all they taught was basic Windows and Microsoft Office usage. Not a single word about security.
It hasn't been any different in the workplace either. The IT department enforces a password policy (the typical minimum X characters with at least one number and symbol type of thing), but never did they ever explain to employees the importance of secure password and how to create one.
Fact is, people aren't being told why secure passwords are important, what threats exist and how it relates to password security. Most people have never even heard terms like "brute force", "dictionary attack", or "keylogger".