Summary
Generally, security experts no longer recommend regular password changes. It’s much safer to choose a stronger password and keep it than to keep changing from weaker password to weaker password. However, there are still times when it is best to change your password. Here are five instances where you need to make a change.
Listen
Links
Transcript
For years, experts recommended regular password changes. Many companies required users to make password changes every 90 days or less. While that advice has typically gone by the wayside, there are times when you should make a change. Here are five signs that it’s time to change your password.
For Personal Tech Media, this is Two Minute Tech. I’m Jim Herman.
First, change your password if you hear that the site was compromised. Even if the company says that passwords and other user data were not exposed, it’s still a good idea to change them.
Second, change your password if you fell for a phishing scam. There will come a time when all of us will fall for phishing. If you do, don’t delay changing your password. Every second your password remains unchanged is time the criminals have to explore your account.
Third, change your password if you see the account on a site like Have I Been Pwned? Have I Been Pwned? logs credentials that were available in online data. If you see your account available there, change the password right away.
Fourth, change your password if you have previously shared your credentials with someone else. Even though I did an episode two days ago on how to share a password safely, each person should have a login for each site whenever possible. Only share a password when setting up separate users is impossible.
And fifth, change your password if you receive a two factor authentication prompt or a notification that someone signed in and it wasn’t you. These prompts or messages could indicate that someone else has access to your password.