Periodically, I get these security updates from Google stating my passwords have been compromised. But most of them are dummy accounts, so I've never paid too much attention. But tonight, for the first time, I found my TradingView account in that list. This is the account that I use everyday. WTF?! Can this be for real? TradingView is literally used by countless traders and their platform is licensed to every broker imaginable. So how is this even possible? Luckily, I haven't found anything fishy with my account, and I've since changed the password, but I'm not sure I should continue using it.
Why are you surprised? There are data dumps of credit card info and more. A lot of it easily accessible with someone with only primitive knowledge.
Most likely your email address was found in a data breach not the password. Hopefully your not using the same password across multiple sites.
Hacking has become very easy. make sure to change your passwords once a while or use google authenticator for security if you wanna be safe.
You trust google to manage your passwords?!!! I'm not the trusting type with password managers, so I keep my own keys (not passwords) in a securely encrypted file. Then I hash the keys into the actual passwords with a password generator roughly similar to the one I posted here. Then I copy and paste the actual passwords as needed. Using a password generator like that after rearranging the characters in the secret key inside it makes the password generator unique to you. Of course, one would have to keep the password generator and the keys to the actual passwords secure and backed up.
Remove your passwords from Google and use a local store like Keepass. https://keepass.info. Keep copies in different devices for replication. The message does not mean that TradingView has been compromised, it means that your password is in a file used as a dictionary for brute-force attacks. Those dictionaries are generated, so that means that your password follows a human-readable logic. It is unlikely that the person who has that file knows that you are using the password to log into TradingView. Unless you come to a public forum and post your username on that website like you have done. So, change your password and username, and store them in a local trust.