Re: advised customers to update their ... password ... “on an on-going, frequent basis.”
Totally agree, whilst there may be some advantages to frequently changing your password, there are plenty of disadvantages. Asking thousands or even millions of people to change their passwords regularly just creates more vulnerabilities. If there are keyloggers on PCs, they're just waiting for peopl to change their passwords and the more frequently people change them, the more likely a keylogger is to strike gold. Then there's the issue of people having to remember said passwords. People aren't very good at remembering a few dozen passwords, and even less so if they keep changing. So what do they do? They write them down or put them in a file called 'passwords'.
Not only that but people hate changing passwords, it's a stressor and will actually put them off using a site, especially if they're forced to keep doing it.
Biting the hand that feeds IT
