Frankly, even though I'm using  HW based U2F to authorize myself at all Google services,  you have  frightened me and  I have followed the link, but the story calmed me down . It says only small part of  G Suite accounts is vulnerable.( I'm not a user of it).  Anyway it's  shame for such top company to keep users password (even the small part of it) in a plain text format.