The biggest security risk is not creating your passwords the correct way and not using 2FA.
It is proven that if your password is greater than 16 characters and some of those characters are special characters, it will take years to hack. Upper and lower case don’t matter much, it’s the length and special characters.
How long does it take a hacker to crack one of your passwords in 2024? | Euronews.
Also, I use LifeLock and it alerts me every access to my accounts, say dividends or buy and sell activity, every bank transaction, every hit your identity is hit in the dark web, section on freezing a 1/2 dozen sites (more than the 3 credit bureaus), on and on.
I don’t use a password pgm mainly because I can store all mine in a safe location that is pwd protected and I will never use a pwd manager that stores your pwds in the cloud on their proprietary cloud, unless it’s Apples. I’ve used AWS and Google cloud in my prior working life and no thanks.