OK this weird, I'd expect one occasionally but so far today I had multiple 'attempted login' on various accounts including 1 gmail account, my binance account (not linked to the gmail address), one email account on a custom domain through gmail. Have checked haveibeenpwnd and nothing there. Doing a malwarebytes scan now.
Any ideas?
Your password manager password may have been compromised. Or you use the same password for multiple platforms.
Cheers, not as far as I can tell, my pw manager is offline (though I did have a db backup in drobox but some of the attempted accounts weren't in there). Currently getting a heap of detections in mwb, will be disappointed if Kaspersky didn't pick them up.
I use different passwords for different accounts and so far none of the attempts have been successful.
Kaspersky
Russian Malware
nyet.
You are most likely in the midst of an identity theft event via data breach.
I would personally reconsider the use of any Russian-nexus software product. There's plenty of other excellent EPP/EDR/XDR product out there.
@H4nd0: Thanks for that, not sure what this line meant though. :)
"Russian-nexus software product. There's plenty of other excellent EPP/EDR/XDR product out there."
Something to do with AV I guess? Any recommendations?
@EightImmortals: Anything non-Russian. Avast (Czech), BitDefender (Romania), ESET (Slovakia) etc. DYOR.
Binance suss do you post on Reddit about crypto
Nope. I did an IP lookup on the Binance attempt and it came from Germany. The earlier gmail attempt was from Brisbane.
Optus customer?
ABB, I also have the phone with them which they use Optus for but none of those accounts have ever been used on it.
How do we know you're not the hacker? Maybe you hacked this OzBargain account.
Lets talk about covid vaccines, that should settle it. :)
Two days ago I had someone delete the extra person off my Netflix account and add themselves. Thought it was spam when I received emails until I checked my Netflix account.
More like your pc is hacked, malware or something like that. Use 2FA for important accounts.
username checks out…
Add this to standard OzB comments you see :)
Won't show up straight away on haveIbeenpwned.com and they also don't show every leak. Doubt your password manager has been compromised. As someone has mentioned they probably have got one of your credentials or what they think are your credentials and are just trying them on everything.
Can't hurt to reset all of your important passwords but I wouldn't do it on your usual device.
Cheers, strange they would have a few different account though. And was just talking to my son and he got the same warning on his hotmail account, totally different PC and the account has never been used on my machine. Just weird.
If there are services you both use, that may help narrowing down where the leak came from.
Not sounding good
Haha Negged for stating the obvious. Amaze-balls (add to common words phrases thread)
Do not panic. Firstly, scan your laptop. Then change all your password. Double check your bank accounts for any suspicious things. Maybe think about changing the credit card by calling your provider. They usually will send you a new card number card. etc etc
weak link Pornhub
:) Different PC, that one belonged to someone else I was helping out. :)
Did you ever email that "someone else"?
Nope. Just repaired his .pst file.
other weak link any site where anti vaxxers and conspiracy jibbering takes place, including emailing or PM-ing them as though there was some sort of bonus trust factor.
Everyone here is suggesting random untargetted stuff, as that is usually most likely.
Consider you may have pissed somebody off and they are personally targeting you, not just a random thing.
I’d be on my guard for spear phishing and watching my physical mail etc. just in case.
Cheers, yeah it does feel a bit sus. Haven't had any unusually suspicious emails. Not sure who I would have pissed off 'that' much, the worst I do is disagree with folk on certain issues, wouldn't be enough to initiate a jihad? But who knows these days?
If you have two factor auth enabled you should be fine. I get several attempts to reset my Outlook accounts password a week. But because I have two factor enabled they can't get the verification code.
Thanks, yep have 2fa and strong passwords on most stuff.
Creds leaked on one of your accounts so they try the same password + email combo across a bunch of different websites. As long as you're not reusing the same password you should be pretty safe. Most likely an inconsequential account that got leaked.