The details of some 15000 Dutch general practitioners have been available through a vulnerability that was open for the last four to five years. Details include the hashed password…

Even when people say that they will and actually do their best to secure stuff like this – there is always a non-zero risk that someone will trip up.