I changed my password, though I never know what my password actually is. I use BitWardern as a PW manager and it generates a password for me automatically that is a random assortment of numbers, letters (upper case and lower case), and symbols. This should be the standard for everyone for all websites you need a password for. I understand the desire to just do a simple one that "doesn't really matter", but creating a habit of always using a password manager to generate your passwords will keep everything secure. And please, for the love of Hashem, PLEASE use 2FA for your email address. Once they have your email, it's essentially game over and they can get your banks and all of your financial stuff.