Catching overly broad exceptions promotes complex error handling code that is more likely to contain security vulnerabilities.