Thousands of employees in the US Department of the Interior are using accounts that are easily hacked::The Interior Department is tasked with protecting the country’s natural resources, like gas pipelines. Hundreds of its senior officers even used “password-1234” on their accounts.
Which also means your company is storing your old passwords which is a big security issue
My company’s IT department is terrible. Nothing is done right. And they’re a multi-billion dollar company.
Not necessarily, it could mean they’re storing the old salted hashes.
I’m pretty sure this is a setting in Windows group policy, I assume Microsoft does it correctly.