The Current State of Password Cracking

Ars Technica does a clearly written, detailed dive into what application developers are up against when it comes to security. If you happen to be one yourself: BCRYPT. NOW. Please. For the sake of our sanity.