The aforementioned managers are only as secure as you make them, keepass and lastpass are not cloud based, as stated before, they are non custodial and the data is stored on your PC. I'll add a little footnote about bruteforcing in a little bit, thanks for the suggestion
True. But though unlikely, you can still be a target and your .kdbx can still be stolen from your computer or from your Dropbox account(or whatever cloud service you're using). Especially when you flaunt online saying stupid unnecessarily things like "my Binance account has 500 BTC" or something along those lines.