Hi CryptopreneurBrainboss,
Great Question, the web-wallet systems were only designed for Distribution purposes only. They way in which users can access their coins is logging in using the same email that they used in the bounty or ICO, we would of course always send passwords out to users, however there is no way for us to know what your passwords are.
There are fraud prevention systems in place to stop or hold an account if there are 5 or more failed login attempts made, or if different IP Addresses are used for more than 3 login attempts. Our support team will always pass this on to fraud for investigation which only takes a maximum of 48 hours to fix.
Our Team Wallet is No.1 on the RichList and this is the only wallet we have access to which is the original dev budget.
Myself and our support team are always here to help.
Was the web wallet the type you have control over your private key or the centralized wallet were the service providers can access your funds without your permission. I'm trying to understand what really happened because sometimes hackers target web wallet to withdraw coins of newly launched projects. The team haven't confirmed that they were the ones that withdrew the coins (that's just the evidence I was looking for when readings your OP).
I'm sorry for your lost but right now we just have your word against theirs, yours is saying "they withdrew the coins" while theirs is saying "they didn't". Maybe if you can get more affected individuals to come state their experience or give us more reason to believe the team moved the coin then will can tagged the account representative on the forum and also support your flag (when you create one).