Nah. The need to regularly change passwords is unnecessary. If you use a sufficiently long password, unique passwords for every site, and 2FA/MFA for “important” logins, then you’re good.
Businesses requiring their staff to regularly cycle passwords is outdated and makes their systems less resilient, since it opens more angles for social engineering attacks or password security carelessness.
I’m not saying every three months, but after 5-7 years like me, it’s probably just a good idea. Who knows what devices have the passwords saved on it still
Nah. The need to regularly change passwords is unnecessary. If you use a sufficiently long password, unique passwords for every site, and 2FA/MFA for “important” logins, then you’re good.
Businesses requiring their staff to regularly cycle passwords is outdated and makes their systems less resilient, since it opens more angles for social engineering attacks or password security carelessness.
I’m not saying every three months, but after 5-7 years like me, it’s probably just a good idea. Who knows what devices have the passwords saved on it still