Another unit in my company recently hired two new employees with the same last name. When IT set up their network accounts, they mixed up the accounts, assigning the wrong account to each employee. One of the two realized the mistake and submitted a help desk ticket. IT was slow to respond. This is when their supervisor stepped in and sent a an email laying out the issue and demanding that the issue be resolved immediately. Naturally, the supervisor sent the email went to all users of a specific system affected instead of the help desk email address.
Then the supervisor doubled down and sent an email to the user group containing a spreadsheet of all his employees login info with the two employees' info highlighted. Real names, login names, and passwords. The other group members are bit higher functioning than the average bear and had resisted kicking off an email storm. However, the email with the login info did get s single response which pointed out the guy's stupidity and raised the simple question as to why the supervisor was collecting his employees' passwords in violation of company policy and saving them electronically, also in violation of company policy. Things have been real quiet since that email went out.