Tepid take: people giving cybersecurity advice, and companies that have had data breaches, tend to focus too much on the possibility of someone stealing your credit card number or bank login. That’s definitely a disruptive and annoying thing to have happen to you, but banks have a well-honed process for fixing it, backed by law and regulation.
What’s not nearly so easy to deal with is your home address being stolen, or your social security number. I can’t tap a couple of buttons in an app to invalidate the old ones of these and make new ones. I wish discussions of data breaches focused less on credit cards and more on the fact that so many random entities have pieces of information like these.