Yes, you should switch your passwords for services affected by the Heartbleed security vulnerability. But you can do better than that. Some of today’s most popular web services let users enable a two-step, or two-factor, sign-on process that can apply an additional layer of authentication by asking for a code from a text message, a smartphone application, or a key fob.
http://venturebeat.com/2014/04/13/two-factor-authentication-a-good-first-step-after-heartbleed/