Cloud Security or just Password Security?

In CSO Online, Pete Soderling questions whether the recent Twitter hack was more an indictment of weak password practices, rather than Cloud Security itself.

Quote:

In reading Twitter's description of the attack, it's apparent that once the attacker had obtained the password to a single e-mail account of a Twitter employee, he/she was able to execute password resets (using the 'Forgotten Password' function) on several other accounts. This enabled the attacker to use the compromised e-mail account as a springboard to access additional data stored elsewhere.

It's the oldest trick in the book, and it has very little to do with cloud security any more than someone stealing your identity and then using it to open up credit card accounts has to do with bank security.

http://www.csoonline.com/article/497513/Why_Twitter_Hack_is_NOT_a_Cloud_Security_Wake_up_Call

In order words, password security can be considered a separate problem from cloud security.