Local Password apps other than Keepass and gopass

Probably what happened was @Alin had a weak password on their email or bitwarden account, and if the email was exposed in a breach an attacker could have brute forced the email password (or bitwarden password) to gain access to their personal bitwarden vault.

Encryption on device doesn’t matter if you know the decryption keys or can easily guess/break those keys.