Samsung's A35 still seems a well rounded phone to me, but it has a lot of ads and bloats that can be cleared later. But will be difficult if looking for out-of-the-box clean experience.
The leak effectively exposed the database of SMS OTP that an authentication provider was using which was contracted by social media companies for SMS based 2-factor authentication. So it has nothing to do with what password manager you use. If you are using Bitwarden's authenticator rather then...