Dangerous, exceptionally risky, to be avoided by all organizations. Not my words but those of the US Gov Cybersecurity Agency
Many years ago, I declared war on passwords or at least engaged in an ongoing information campaign against poor password hygiene. This comes as no surprise to anyone who regularly reads my articles, of course. However, what surprised me was discovering that I finally have an ally in the U.S. Government, which has suddenly taken dangerous password practices very seriously indeed.