I'm not sure how did they know that the email addresses were used in Cryptopia. If you have used your email address in other crypto related sites, it's possible that it's the reason why they thought that it might have been used in an exchange.
Cryptopia claimed that there was no hacked nor breached happened in their end. As they stated
here, if you've used your address in other sites, you should check it at
haveibeenpwned.com to know whether it has been compromised in a data breach.
On the other hand, what I was wondering is that, why would a unique email address used only for Cryptopia received a failed log in attempt email at the same date with this?
(I saw some comments like this in their Reddit post). What a coincidence, isn't it? Anyway, if that's the case, you should message them on
FacebookHmm I see so the failed login attempt is currently experiencing by majority of Crytopia users based on the date on the link you provided (Reddit).
But for me as pointing to your last statement, even Cryptopia claimed that no database leaked from their side, it's quite impossible for a "hacker" that they will just do a random guess of email that came from crypto related site as an attempt to login on Cryptopia. There are really lots so it will be a so much time consuming activity with low chance that they can breached even one, or maybe they have a special program that will do the work lol.. Well just a guess.
P.S The email address registered on my Crytopia account is tagged as Pawned by
haveibeenpwned.com during Bitcointalk forum data breached last May 2015. Maybe that was the hackers source but just still surprised here because my Cryptopia account with that email only registered last January 2018.