Ebay is the latest company I have heard from that is asking people to change their passwords.
You really have to be concerned about this sort of thing because it seems to be getting more frequent.
You are told to watch for charges on your bill that you did not make. Fine, but who knows what are legitimate bills or not with all the mumbo-jumbo that appears on the statements. A company with a certain name can be billing under some totally unrelated seeming corporate name and scanning a list, who can be sure? Then take automatic payments and what are you supposed to think. The wonders of the electronic age!
I have so many different passwords that the only way I can keep track is by using a password manager. I have the pro version of Roboform and it is a lifesaver. It is free up to 10 passwords but with all my surveys and other stuff I probably have well over a hundred. It is also pretty good at filling in forms where you are constantly putting in things like your name, address, email and so forth. It is really handy at keeping track of password changes.
Over the years I have had a few issues with the program but nothing serious or unresolvable, just aggravating. This would probably be the case with anything so I just go along with it.
I can not see the security situation improving in the foreseeable future. Security systems and hackers are both improving their capabilities so you just have to protect yourself as best you can.