Researchers at the University of Wisconsin-Madison and IT University, Copenhagen found that just 4% of the people surveyed obey best practice rules for passwords. The rest use the same passwords for different systems or use words that appear in the dictionary or write their passwords down on post-it notes beside the computer. Humans are the main flaw in any security system, according to an academic survey [pdf] that has revealed humans to be the main flaws in any system. Read the full story here: Out-law.com.
Source: https://threatpost.com/study-only-4-corporate-it-users-stick-password-rules-101509/72326/