Credential re-use is a common way for threat actors to gain access to other accounts. Publicly available collections of data breaches make collecting potential credentials a very simple task. Creating secure passwords for every site or service can be a challenge but using a trusted password manager such as KeePass or LastPass help ease the burden so you only need to remember one: the password to access all your passwords. Because this one password protects the rest of your passwords, however, it is especially important to create a strong, yet memorable password for this service. Although some may find the few extra steps to use a password manager burdensome, many of them also have browser plugins available which can offer to automatically fill in login forms or offer to save a new registration without manually adding it. Intuit also offers Multi-Factor Authentication (MFA) as an optional feature to protect TurboTax customer accounts. It is best to take advantage of MFA on any account where it is offered, especially if the account gives access to financial information.

https://www.bleepingcomputer.com/news/security/intuit-notifies-customers-of-hacked-turbotax-accounts/