This is clearly a company trying to make a name for itself, without addressing the real problem.
Most security failings are not because of weak passwords. Once you move beyond dictionary attacks, your password is secure enough.
The real vulnerability is everything else surrounding the password. As we have found out, major sites have stored unencrypted user passwords in spreadsheets, truncated passwords to only the first few characters, had trivially weak encryption, used no salt, and used a fixed salt value.
In between you and the site with questionable security are people watching you type, keyloggers, fake login prompts, compromised DNS servers, rogue WiFi hotspots, spoofed sites, cross-site scripting, man-in-the-middle attacks, compromised identity managers, and too many more vulnerabilities to list.
You are far more likely to be exposed by having your password revealed by something you can't control, and then having it added to a dictionary for later attacks, than a clever system guessing passwords using rules.