I’ve gotten a few of these over the past few weeks as well. Fortunately, it doesn’t appear that the password on my account has ever been successfully changed, nor were there any signs of illicit login (no missing stuff). The attempt wasn’t successful, and I don’t believe any of these attempts are due to your system, e-mail account, or anything else having already been hacked. I’d guess they’ve either somehow found out that your e-mail address has a GW2 account or they’ve just acquired a large list of e-mail addresses from somewhere and they’re trying to reset all or a lot of them to see which of them work. They would need to do the reset attempt and then somehow hack your e-mail (password reset or whatever) — which isn’t that far-fetched if you don’t have great security on your e-mail. My advice is to set up the Google Authenticator (2 factor authentication) on GW2 and then have your account associated with a GMail account on which you also have 2 factor authentication (SMS or Google Authenticator). Implement every possible security feature — security questions, require SMS to recover account, etc. They won’t be able to do much even if they get the password without also having your authenticator and/or mobile phone.
Oh, and on those security questions: don’t answer with real info. Make something up and keep a record of what answers you made up. For example, if a security question is “Where did you graduate from high school?”, don’t answer it honestly. The answer could be found with a bit of research on your name. Answer it with something like “Metropolitan Museum of Art”.
Not affiliated with ArenaNet or NCSOFT. No support is provided.
All assets, page layout, visual style belong to ArenaNet and are used solely to replicate the original design and preserve the original look and feel.
Contact /u/e-scrape-artist on reddit if you encounter a bug.