While companies pour thousands to millions of dollars into IT security, a c|net report explains that robust firewalls and security patches do nothing against the most common security flaw: weak passwords. “Just about every company that we have gone into, even large multinationals, has a high percentage of accounts with easily (cracked) passwords,” Greg Shipley, director of consulting for the network protection firm Neohapsis told c|net. “We have yet to see a company whose employees don’t pick bad passwords.”