My security may not be the best but I don’t have a giant “we store thousands of passwords” bullseye painted on my back.
Something akin to security through obscurity yes but I’ve concluded the central approach is even worse - it’s the “this system is unhackable” thing all over. May as well dare the best to hack it