I'd save that for the guy that set up a website handling millions of dollars' worth of other people's money without even basic security precautions. At least those e-mails are vaguely useful. He or she is even recommending a sensible replacement for Mt Gox; as far as I know Tradehill's the only bitcoin trading site that no-one's found CSRF vulnerabilities on yet, which hopefully means they're actually taking security seriously.
No need to to go overboard. If Mt.Gox had
NO security precautions then there passwords would have been in the clear,
OR they would have actually lost the bitcoins out of their back end wallet.
Just because tradehill hasn't been compromised means absolutely nothing. Why would anybody even bother? All the current traders are on Mt. Gox. since you have no idea what security Tradehill has, then implying that they are doing something better then Mt. Gox is just spreading a false sense of security.