Some people, and quite a few firms, think it’s a good idea if passwords are changed regularly.
I don’t think I necessarily agree, as I explain in the latest video on my YouTube channel.
Although there are good reasons (as I detail in the video) for sometimes changing passwords, there are real dangers that regularly changing your passwords will lead you into the dangerous territory of choosing poor passwords.
Poor because they might be predictable and easy-to-guess, easy-to-crack, or simply not unique.
In my experience, enforcing regular password changes can lead to people falling into the trap of weaker passwords rather than strengthening their security.
When there are good reasons to change your passwords, you should definitely change them - and make them strong, hard-to-crack and unique. I recommend using a password manager to generate random passwords and to store them securely for you. If you’re anything like me then you will have far too many passwords to ever have a hope in hell of remembering them for yourself, so let technology do the heavy lifting for you.
But if you don’t need to change your passwords, maybe you shouldn’t.
Stay safe folks.
Does your firm force you to change your password on a regular basis?