Hi merckxist,
Apart from the SQL threat, considering the overall website security situation of sites on the Interwebs to-day -
it is a good policy to change passwords once in a while over time.
Once bitten twice shy, ( where I point at what happened to these support forums recently)
Your reaction shows that you are fully aware of the present password security situation.
polonus
P.S.
DavidR and I are using script blocking on sites (e.g. No Script) as a good form of protection against third party threats.