My point was - no tech giant leaked passwords but small guys did. We have no insight into how internal policies look like and if they are actually followed, we can only see outcomes. Lastpass exposed encrypted passwords in 2022. In 2019 1Password app had a bug where it didn’t clear master password after logoff and kept it in plaintext. Both enormous yikes for companies that deal primarily in security.