The dating site eHarmony has admitted that some of their users’ passwords have been compromised. While the company says that “a small fraction” of their users were affected, reports suggest that 1.5 million passwords have been breached. This follows a high-profile breach involving Linkedin, where more than 6 million passwords may have been stolen.
Note that these are not actual passwords, but “hashes,” or a form of encrypted versions of the passwords. But these hashes can be cracked, and it’s just a matter of time.
In both cases, you should change your password if you use these sites. Read this blog post from December, 2010, discussing how to make your passwords more secure.