Phishing and data breaches are a constant on the internet. The single best defense against both is to use a password manager to generate and automatically fill a unique password for every site. There are free options, and even ones built into your operating system or browser. We can help you choose.
Its pretty easy to set up, though I’ve been using a self hosted btsync for years now instead of syncthing: set up your folder, share with server, and wipe your hands :)
That said, I also have family on mine and have a 1pass family sub, which was the only way I could get people to use non standard passwords
It’s like herding cats sometimes.
I’ve been using KeepassXC + syncthing for years, served me well.