There are other ways accounts get hacked, there are some fake projects online that would request for logins just to get intouch with how someone's password look like, hackers tried this passwords on other accounts of the victims like their gmail and blockchain accounts. This point also makes account vulnerable to attacks.
Thank you for bringing up an important point about how accounts can be hacked through phishing attacks. These attacks involve tricking users into giving away their login credentials by creating fake websites or sending deceptive emails that appear to be from a legitimate source.
Once the attacker has obtained the login credentials, they can use them to access other accounts belonging to the victim, as you mentioned, including email and cryptocurrency accounts. This is why it's crucial to be cautious when providing login information online and to verify the legitimacy of the website or email before entering any sensitive data.
According to a report by the Anti-Phishing Working Group, phishing attacks have increased by 22.5% in 2021, highlighting the growing threat of these attacks to online security (source:
https://www.apwg.org/). It's essential to stay informed about the latest cybersecurity threats and to take proactive steps to protect our online accounts. This can include using strong and unique passwords, enabling two-factor authentication, and being cautious of suspicious emails or websites.