I don’t really have anything special or important to contribute here, but be sure to read this post on r/rotmg (if the link doesn’t work just go to r/rotmg and look at the sticky, it’s a huge deal)
basically the short of it is, hundreds of millions of password and email combinations across all websites on the internet were leaked the other day, and there’s likely (read: definitely) a lot more to come in the near future. it has also been confirmed that many accounts specifically for RotMG and Steam are among the bunch. the OP on the reddit post and Israphial (r/rotmg mod) say to use https://haveibeenpwned.com/Passwords to verify if one of your passwords has appeared in this breach or any other.
regardless of whether or not your password appears on haveibeenpwned, it would probably be a good idea to change all your passwords immediately just to be safe. the biggest reason for this that there are more “collections” of passwords that haven’t been released yet, but probably will be soon and haveibeenpwned can’t magically update its database instantly.
again, I don’t have any special insider information and can’t answer any questions that aren’t don’t already have answers on the reddit post. I’m just trying to spread information to those who don’t check r/rotmg every so often. I didn’t see anyone else sharing this post here, so I decided to myself. if a mod could pin this or move it to a high-visibility location somehow that would be great.