[r33b33]

2FA makes this a non-issue, no? You will get notificaton if someone failed to log in.

[Asraelite]

Not even necessary. Salted hashes are enough, assuming you used a strong password.

[cwmma]

it looks like a lot of these are from key loggers not from database breaches, so salted hashes, while nice, solve a different problem.

[Asraelite]

I didn't see that, yikes. That's one hell of a breach then.

[ericmcer]

Yeah assuming you have a billion encrypted passwords what are you even gonna do? You could try to brute force and maybe get a bunch of common/weak ones but as long as your password is like 8+ chars and fairly unique you probably wont be a target.

Unless they were storing them all unencrypted lol.