It doesn't matter how strong or long your password is if you've got a keylogger or reuse the same password or enter it into a phishing site. If you can I'd set up 2-factor on your email address. 2-factor will be coming for this site with the new forum early next year so hopefully that will cut down most of these hacked accounts.
That sounds mostly like vaporware so far. In the meantime, I don't understand why theymos or badbear doesn't implement 2fa for the existing forum in the interm since something like that is sorely needed.