I have an idea incase someone gets hacked. their UID should get sent to the persons email with a new password, and they used that to login. and if not that, maybe they can login with their IP, and If the hacker gets their recent IP logins, a custom password should get sent to your email, and well, if your email gets hacked, a staff member can find some possible contact of you like xbox, aim, kik, etc.