My understanding is that the advice to change passwords regularly is out of date. I believe the present thinking is that you should have a random password (ideally generated and stored in a Password Safe) and only change it when there’s a suspicion that it has been compromised.
1 Like