Your Password Security Questions Are Terrible, And They're Not Fooling Anyone

...The main problem is that they're either easy to remember or "somewhat secure," but usually not both. That's according to a blog post written by Elie Bursztein, Google's anti-abuse research lead, and Ilan Caron, a software engineer. If security questions are easy to remember, they're probably easy for an impostor to guess; but if they're too complicated, the person who created them won't be able to remember them...
http://www.huffingtonpost.com/2015/05/22/password-security-questio_n_7414372.html