Received a weird privacy threat warning.

Osis

Apparently my unencrypted password was about to be sent on/from a sketchy Russian credit card stealing site. My first layer of confusion is: I definitely do not have an account on a sketchy Russian credit card stealing site. Is Bitdefender talking about a password of mine being sent on/from sketchy Russian credit card stealing site? If so, how? I'm not using the password manager. Second layer of confusion is that I don't have a credit card.

I'm left with three possible conclusions, I'd like to know which of these ya'll think is most likely:

1. Info related to my non-existent credit card (or some other banking detail) in the form of a password was stolen and is being sold on this site and Bitdefender somehow knows.

2. Someone is using my PC or (more likely [in the sense of it being feasible somehow, I'm not clear on whether/how it would work technically] my IP) to register on sketchy Russian credit card stealing sites and the password they used is being sent somewhere by aforementioned sketchy Russian credit card stealing site. 

3. It's a weird false positive.

I'd also love to hear suggestions on what to do for each of these if anyone has them. 

[Deleted User]

Hello /index.php?/profile/218169-osis/&do=hovercard" data-mentionid="218169" href="<___base_url___>/index.php?/profile/218169-osis/" rel="">@Osis,

As per the provided details, it seems like you have received a warning which informs you that you're browsing a website which does not have a security certificate configured. When a website does not have its security certificate configured, then any information entered on the website is unencrypted, thus, your credit card may be compromised if you type in your credit card on that website. 

Bitdefender will prompt this warning for any website that does not have a security certificate configured. Kindly let me know if the situation is different.