I also read people advising you to keep your password through a third-party management online, I don't encourage that, I've heard enough of password compromise and that may be one of the reasons, just don't trust the internet for anything.
A password manager isn't necessarily an online service, though such exist and make cross-device synchronization a lot easier. If such online password managers are made with security in mind, at least at the very basic level, they only store and sync an encrypted password vault which is only decrypted on your local device. Of course you have to trust the service that only you have the decryption key.
Another approach are locally installed password managers where the password database is synced with other tools across devices. There are good open-source solutions for this.
However, if your account was hacked, why not use the email power to reclaim it back. This can also help you recover your lost password.
If your bitcointalk account is hacked, the hacker can change the email address. After your own email address has been replaced, you can't easily reset or recover your account anymore. Your only chance to reclaim your account is a staked Bitcoin address or signed PGP message. And this will also take some time in which the abuser of your account can do nasty stuff and flush the reputation of your account down the toilet.
2FA as an additional security measure should make a takeover of your account due to password phishing or simply utterly bad human passwords a lot harder.
It's essential to learn to spot and not click on phishing links.