I have a slightly different take on this.

If we're going to say it's not if, but when, your data will be leaked, we might as well just consider it to be leaked.

In that case, the key takeaway is: don't let identity be the way you secure things.

Use encryption, don't rely on username and passwords, don't rely on service providers. None of these things can protect things that are important. Maybe you can still trust the banks, they have insurance, but it's a soft trust really.

Consider access to websites and services that use 2FA as if it were as secure as if you secured it with a simple password of your aunty's, brother's daughter's name.

The service provider has God mode and they can be hacked or manipulated in ways that work around this security theatre. It's okay for not everything to be secured with the highest of security but be cautious about what you are securing and where and how.

Sometimes it's plain just not avoidable. You can't even get a credit card without revealing ten personal facts about you and your own personal finances.

I guess just learn to have a more private side of yourself. Then protect and nurture that. It doesn't mean being a hermit, but it does mean things like personal photos and personal journals and things that you aren't required to make public can stay protected from all this bullshit.

nostr:nevent1qqstzn734k97jwx2akd32mkh7aqhmxr4jqzr6j9sgrpn7ddmdlrfxkcpzamhxue69uhhxetpwf3kstnwdaejuar0v3shjtczyprjwm43v079fvmn8yc2kh8at755dpapj5u8r2rn4486a6g73f0nsqcyqqqqqqg75nauc