2. Use different email (not the email you used when registering at BTT) when you follow bounty. Coz usually your email exposed when following bounty.
And activate the 2FA feature on the email for additional security.
I was scrolling and reading on the comments and no one mentioned about securing your email by activating the phone or 2FA but only you this is a must if your email is secured the hacker cannot change your password it will trigger confirmation and notification to the email the user is using,
on Gmail there are three ways to secure your email, these are phone verification, 2FA, and code verification, you should apply it to all your emails.