It's social engineering. Even I felt uneasy seeing how the author was able to take usernames. However, this isn't very different from other white/black-hat hackers getting into others' accounts by simply contacting support and providing minimal proof.