Originally Posted by
plunet
From what the OP has described, it sounds like a function of Google Chrome running your username and password through a database of known compromised credentials. It's hard to be certain but it sounds like it.
https://support.google.com/chrome/thread/23534509?hl=en
the way the scan works if is that it is not specific to the site you're are logging into, just that your username and password combination has been compromised sometime someplace. This shows why it is a very bad idea to use the same password on multiple websites, once your creds are compromised in one place they can log in elsewhere.
I doubt. According to the OP he received a message sent apparently from some QR mailbox.
Google Chrome sends a popup warning when you login to Chrome (maybe to other Google applications).