Comment Re:I don't care enough to have a good password (Score 1) 128
A) If your system doesn't detect the username brute force, as mentioned, its time to invest in better IT managers.
B) The NIST standard (SP 800-63) that introduced the wide spread used of uppercase, numeric and special characters was released in 2004, and revised in 2006, 2011, and 2013.
It was later replaced in 2016/17 (SP 800-63-3) with notes that requiring special characters and hard to remember schemas caused security lapses in other harder to protect areas such as post-it notes with passwords or password schemes as mentioned above. The amount of companies that still used a 16 year old and retired security standard is ridiculous.
tl;dr; if a company requires a P4$$w0Rd!!! password scheme, their view on security is almost old enough to vote and you should not trust them.
For your own research: