But to my greatest surprise my mail was changed from the previous mail I used without me having to authorise anyone changing my mail, I want to know if this was done by admin or it's a kind of auto reset of a mail because checking from my profile this is not the original mail that I used in signing up this account and I am not also blinded not know the mail I used in signing up my account.
It happened because you use unexisiting email address for registering your account, then you won't receive any email notification for security.
You only get the email security notifications if your email address truly exists.
I added email notifications for some security events:
Whenever your password is changed (except by an administrator), you will get an email about it.
Whenever your email is changed (except by an administrator), your old email will get an email about it with a link to lock your account. The link is valid for 14 days.
Let me know if you find any bugs.
Additionally, if you are wondering that what you should do now, let's read this post
then update your email address appropriately.
Thanks to
PowerGlove, who did 90% of the work on this, the much-requested 2-factor authentication feature has finally been added. You can enable it in your Account Settings, and then you have to give the code when logging in. If you don't have 2FA enabled, you have to leave the OTP field blank when logging in.
If you use the forgotten-password function, then there's an option to remove the 2FA. So 2FA does
not provide any protection in case of a compromised email. Make sure that your email address is secure. If you don't want to set an email address, use something like
yourUserName@invalid.bitcointalk.org; don't use a random nonsense email like
y@x.com, since somebody might
create that domain/email.
Let me know if there are any bugs.