Never before, on any online service or game has someone obtained and used one of my passwords. Until GW2. I cannot imagine how they got it - I definitely do not enter my account details on any site that isn't GuildWars2.com or their client, and I haven't given anyone my details.
Yet still, someone tried twice to log in to my account from Zhongyuan. This leaves me thinking, what do I put now as my password? Clearly, given by my experience and the countless, countless others who have had external log in attempts (or even their accounts stolen), ArenaNet's system is horribly unsecure. So it hardly matters what I use as my password, if someone is just gunna find it out again and I can never use it thereafter? I'm not going to go to the effort of thinking up a great password and learning it if it potentially will be compromised again.
What did you guys do, or what would you do, if your account was compromised? And how has the security been for GW2 as of late?