Also, "1234" and "password" are not good passwords.
I kid, but I've had co-workers who used passwords like that.
My columnist co-worker had her Gmail account hacked, and some clown was sending out solicitations for money (claiming that she was "sick", on travel, had lost her credit cards and wallet, and needed money). She got dozens of responses from colleagues offering to help her. We had to run a note in the next issue explaining things.
I still don't understand how it's 2012 and we're still not using something more sophisticated for password protection than a bunch of letters, numbers, symbols and punctuation. I don't pretend to have the answers because maybe everything -- including finger prints, finger print heat signatures, retina scans, voice "signatures" etc. -- can be hacked one way or another, but one would like to think there's a way.
I use an app that will randomly generate messy (in a good way) passwords. Although I want to believe it makes me more secure, when seemingly no company is capable of safeguarding the actual data, it just makes me wonder.