On the one hand there are billions of stolen credentials, on the other hand, on average people reuse the password 4 times, if we combine the two numbers the probability that a cyber criminal gain access to our "secure" using our credentials is really high. Rainbow tables are becoming more sophisticated since the number of exposed passwords is incredibly high. We have to be prepared to react, we have to protect our sensitive information.