It's a major cybersecurity risk to not have this. Since some users share their email address on their profile, all that would be needed is the password. A lot of people re-use passwords (breaking the #1 rule of cybersecurity), so one leak could get an account hacked. It's a no-brainer to add this. It would also thwart most spammers by only giving them one chance. Am I missing anything?
It's a major cybersecurity risk to not have this. Since some users share their email address on their profile, all that would be needed is the password. A lot of people re-use passwords (breaking the #1 rule of cybersecurity), so one leak could get an account hacked. It's a no-brainer to add this. It would also thwart most spammers by only giving them one chance. Am I missing anything?
