Ever consider adding 2FA? Basically, you would scan a QR code. then, on your phone a 6 digit code appears and expires every 60 seconds (so a new one, per 60sec)
Two factor authentication (known as 2FA, or 2 step verification) is where it requires an additional number/code towards your password. This can be done by a text, email or what i recommend using the authenticator app which is a 6 digit number code that expires per 60 seconds. This will benefit in protecting accounts.