I agree. But on TGT I had a very secure password not used anywhere else yet it was somehow compromised. That is according to McAfee.
The compromise probably has zero to do with the strength of your password. Servers have to store you password (or a salted and hashed version of yours) for comparison and validation. Those catalogs of passwords are what hackers seek or purchase on the market in order to gain access to your account.