Aside from all of the advice about having a strong password (at least eight characters, mixed case, alpha-numeric and a few symbols or punctuation marks), it’s a pretty good idea to change your passwords frequently. Many security professionals suggest the average user should change their passwords at least every 90 days. They’ll also tell you to avoid using the same password for multiple services.
My previous career was in information security. So, I tend to be a bit more cautious about my passwords. If you have more online accounts than you can remember, then keeping those passwords organized can be a challenge. I delegated the task of crafting strong passwords, and managing them, to 1Password a few years ago.
That doesn’t eliminate the need to change those passwords — and the 1Password master key — on a regular basis. As a bonus, 1Password tells me when there’s a reason to change a password ahead of schedule.
One such notice arrived this week. A slew of accounts were accompanied by the notice “We believe that passwords stored by this site or transmitted to this site may have been compromised. Please update your password right away.”
If you haven’t changed your passwords in a while, particularly on the following sites identified by 1Password, it’s probably a good idea to change them now.