“Use a strong password” is the “wear sunscreen” of the digital world: Everyone knows it’s good advice, but too few people actually follow it. Instead, they lean on go-to passwords that are easy to remember, throwing in that “!” at the end of their secret word or slotting “@” in place of the letter “a.” (It’s not for nothing that “P@ssword!” is the most popular password.) None of this, of course, diminishes the stakes of a breach for most companies. The uncomfortable truth is that password security remains a common and underestimated concern. And for companies, one of the biggest challenges in shoring up their security is getting employees to practice better password hygiene.