Don't worry about it, just make sure you have posted your address, or even better a signed message before changing your password. I have just changed my password and email because of the recent wave of hacks and I'm not worried about anything. I haven't changed my campaign address and i'm not planning to. I also have access to my posted addresses and can sign a message if needed.
Where can I find more information about those digital signatures? I've seen people using them but still don't know how it works.
I've just seen people saying that password change warning remains for weeks in trust so it seems like I have to ensure my safe before performing any actions.
Shorena has a
great guide about signing messages, which I recommend reading. Basically what you do is stake an address from a wallet that you control that can sign a message, and then it can be used to prove your identity and that you weren't hacked.
For example, I staked the address 1DarkStrRagcDjWtsPGxkav4WG3poLXzDS
here. I can sign a message with it:
-----BEGIN BITCOIN SIGNED MESSAGE-----
I'm still DarkStar_! 2017-10-16
-----BEGIN SIGNATURE-----
1DarkStrRagcDjWtsPGxkav4WG3poLXzDS
Gxn+owaR42xDtYEOvMOVfrbZueo2iNS0mzNluPuyLPH+HZa2hYL7PFyIaqV6XNFtqGULcwKjyZAOPF+cip+QKgc=
-----END BITCOIN SIGNED MESSAGE-----
Only the person with the private key to the address can sign a message from it, so it is reasonable to assume that I'm still me. You can then
verify the message to make sure it is legit.