Hi all, That's the issue If I select 'Forgot password' on some websites, the website offers to send an instant code to my email address which I can then use to access the website for one time. So if my email account has been hacked it is very easy to do a lot of shopping with my e.g. amazon account. And it is even simpler than going through the normal password changing routine. My solution The password change request or the instant code is being send to my login email address but instantly forwarded to another (hopefully not hacked) email account. Remaining issue Is anyone aware of an email service which prevents (e.g. through an additional password) the switching off of such a forwarding rule? Thanks, Alex