So to confirm, that means it’s not possible for someone to impersonate me with access to a hash of my old password?
Yep, correct. In the moment you ever requested a reset-password email and changed your password, you switched to a new secure password solution (even if you just used the same password).
So to confirm, that means it’s not possible for someone to impersonate me with access to a hash of my old password?
Yep, correct. In the moment you ever requested a reset-password email and changed your password, you switched to a new secure password solution (even if you just used the same password).