As a programmer, I am just dumb founded that fellow programmers still do things this stupid. It ain't that hard people!
If you follow security issues in that industry you know that the number 1 security issue is user laziness.
Many, even those who should know better don't even change default access codes.