Once again, it's less of a risk to use a password manager ...
Just checked and my 400+ various online accounts are all protected with a unique, PM generated garbage complex password. Upperlower case, numeral, special character as long as possible.
Even if the site at the other end stores passwords in plaintext (and how do you know they don't ?) having sight of any single password of mine is of no use cracking any other site.
Plus all my financials are covered with various 2FAs, as is the password manager itself.
Now I am not naive enough to even remotely consider myself unhackable. However, like the 2 campers in the outback. I don't have to outrun the crocodile. I just have to outrun my companion .....