Safety leak: imap access with old password

Safety leak: imap access with old password

Dear Zoho team,

Yesterday evening I discovered that some email had been set to 'read', but not by me.  This morning, again over 25 emails had been switched from 'unread' to 'read'.
So I tried to change my password, but couldn't, because my old password was incorrect.  (I had never received a password change email from zoho - or it had been deleted by the same intruder.  And yes, I did check caps lock and the like.)
I logged out, and indeed couldn't log in anymore.  I clicked op 'forgot password', and changed my password, checking 'log out on all devices'.

All this was through my browser.  Now I also have a Linux computer that accesses my mailbox through evolution.  I did not change anything there.  As expected, I could no longer send mails from there.
But - and this is the leak: I STILL RECEIVE ALL MY MAILS ON THAT COMPUTER, even though it doesn't know my current password.

I am a relationship counsellor with a professional secret.  People write me highly confidential things, trusting their secrets are safe with me.  Please close this leak as soon as possible!

Thank you - apart from this I am quite happy with Zoho.
J. A. Durieux

[[EDIT: The leak is closed now - thank you!  Any idea why it has been open for at least an hour or so?  Will this happen again the next time I change my password?]]