Everyone should be using a password manager. Every service should have a different password (and some service should have several passwords) and it’s impossible for the average person to keep track of all of those. Every time I hear about someone losing control of an account it’s because they were using the same password as another service.
I recommend:
- KeePassDX: Can be completely offline. Probably the most secure but can be a little awkward to use sometimes.
- Bitwarden: Cloud based but open source. You could run a server but the main service offers MOST of the features for free.
Your mileage may very with some of the proprietary platforms. However my job uses 1 Password and it seems to be fairly safe.
Vaultwarden is a selfhostable bitwarden implementation where all the features are free. (Some are not implemented, though)