Single post in Account Breach incident

First of all, I'm so sorry for anyone affected by this. Second...just a thought that comes to mind regarding password security. Would it be a possibility to force users to change their password every X months? It's a system I've seen used both at my workplace and some other websites. In our case it also runs a check if a password, or one similar to it, has been used prior, and forbids you from using it. That way people will eventually be forced to come up with more unique, and thus most likely more secure passwords.