The issue is that they store your details. They could quite easily make an offline version where you never transmit data to them. This would prevent any data leaks.
If you store something that people want to keep secret, expect others to want to steal it. The more secrets you store, the greater the desire to steal.
FYI: For SSH logins you should be using keys not passwords, and I would say something about FTP, but I know too well that clients stupidly ask for FTP access. because they have no clue about security.
The issue is that they store your details. They could quite easily make an offline version where you never transmit data to them. This would prevent any data leaks.
If you store something that people want to keep secret, expect others to want to steal it. The more secrets you store, the greater the desire to steal.
FYI: For SSH logins you should be using keys not passwords, and I would say something about FTP, but I know too well that clients stupidly ask for FTP access. because they have no clue about security.