There are literally tens of thousands of publicly accessible applications, from internet banking, government applications, and healthcare, that are simple to exploit because developers are either using default [password] settings, or relying on pre-packaged scripts available on the web.