If you reuse passwords across sites, change them immediately to unique, strong passphrases.
A significant portion of this "fresh" data comes from malware on personal devices that captures credentials as users type them, rather than a direct breach of Google’s servers. If you reuse passwords across sites, change them
Use trusted tools like Have I Been Pwned to see if your email has appeared in recent dumps. If you reuse passwords across sites
Turn on Two-Factor Authentication (2FA) for your Gmail and all major accounts. This prevents access even if an attacker has your password. change them immediately to unique