Just a reminder, to change your password!
This site has been hack twice during high profile incidents. The first was during the election, and the second time was a script attack when Mueller was announced as lead investigator.
Even if im just being a tad paranoid, it's always good to change your password every 90 days at most.
I have one set of passwords for sites where I am not that concerned about being hacked, like this site and newspapers and things like that. I have another set for my financial information. I'm not on Facebook or any other social media other than this site.
If, say, the Washington Post were hacked, and they got one of my "no big deal" passwords, and they got my credit card information that pays for my Post subscription, is there a way for them to use that information to get at my other information that is behind my "serious" passwords?
you should be ok imo.
According to the UKs National Cyber Security Centre, Most administrators will force users to change their password at regular intervals, typically every 30, 60 or 90 days. This imposes burdens on the user (who is likely to choose new passwords that are only minor variations of the old) and carries no real benefits as stolen passwords are generally exploited immediately. Convinced of this point as well, the National Institute of Standards and Technology (NIST) recently rejected forced changes for memorized passwords absent a security incident. In fact, NIST uses all-caps to scream that administrators SHOULD NOT require memorized secrets to be changed arbitrarily (e.g., periodically). Still, readers beware, not everyone has eliminated password expiration requirements (including, as of this writing, the PCI Security Standards Council, as well as many vendor management programs).