Thanks, that makes a lot more sense.
One more thing if you don't mind. How do you know that the desired password was the current password?
The reason I ask is because that implies that Jagex stores our passwords in plaintext. I'm hoping that is not the case. Therefore I'm assuming that you've looked at when the password was changed and other available data. Then based on that you came to this conclusion. Correct?
It's just an assumption, I could be wrong. I looked at the context available (phishing ticket replies). We do not have plaintext passwords.