I see there has been a lot of security concerns here on the site. We do take these concerns seriously and would like to address them. This will take a significant development effort to implement. And may take some time to come to fruition.
In the meantime. Understand that the security of your account, by design, is implicitly tied to the email address used when the account was created. At this time, that original email can always recover an account. This is why we have discouraged trading and selling usernames. Some users have found ways to get around these concerns using renames, though it’s still outside of our scope of support. It has always been out policy that we do not intervene in incidents where an account was traded or sold and then reacquired by the original email.
As we work through how and what we are going to implement to improve password security, we will keep you updated.