my gmail hacked?

K

Kgabogk

Expert Member
Joined
Aug 12, 2008
Messages
1,084
Reaction score
32
google acc alert indicate that my acc has been accessed by another ip adress in the US, is it google technicians working on my acc or has my acc been compromised?
n any other location. However, there
may be sessions that have not been
signed out. Sign out all other sessions Recent activity: Access Type [ ? ] (Browser,
mobile, POP3,
etc.) Location (IP address) [ ? ] Date/Time (Displayed
in your
time zone) Browser * 82.1xxx4 9:14 pm (0
minutes
ago) Browser * 82.xxx121 5:17 pm
(3.5 hours
ago) Browser South Africa
(41.16.207.132) 3:55 pm (5
hours ago) IMAP United States
(64.57.242.91) 10:59 am
(10 hours
ago) IMAP United States
(64.57.242.93) 10:52 am
(10 hours
ago) IMAP United States
(64.57.242.90) 10:45 am
(10 hours
ago) IMAP United States
(64.57.242.94) 10:39 am
(10 hours
ago) IMAP United States
(64.57.242.92) 10:33 am
(10 hours
ago) IMAP United States
(64.57.242.87) 10:32 am
(10 hours
ago) IMAP United States
(64.57.242.88) 10:17 am
(10 hours
ago) Alert preference: Show an alert for unusual activity. change * indicates activity from the current session. This computer is using IP address
82.xxx
 
Possibly the guys from China ? i read earlier they hacked important people's accounts...

You must be ViP :)

Hope you get sorted
 
Not hack, hijacked... It's called phishing.

They used links and hijacked dns pointing to fake gmail servers that captured the logon details while passing it onto google. People thought they log into gmail direct while the passwords where given to the owners of the fake pages.
 
Log out of all sessions (IF it allows you to do that.)

Change your password.

Activate the SMS service they offer

change password again.
 
How they did it explained.

http://contagiodump.blogspot.com/2011/02/targeted-attacks-against-personal.html

How the fake Google logon page looked.

spot.JPG
 
Possible that you used a proxy or VPN? Or accessed your email from an internet cafe or at work and they use used a proxy/VPN?

I've had that warning before when I accessed my gmail via the http://freecavpn.com/ vpn...
 
In the case of phishing it doesn't matter how strong your password is cause you giving it to them.

Best way is still 2 step authentication that way they need your password and your phone to get in.
 
d7e7r7 said:
Not very accurate IMHO...

"Password", assuming one thousand guesses per second, would take 17.33 centuries to guess according that calculator... but it's one the first passwords in many password dictionaries...

Try http://www.passwordmeter.com/ or https://www.microsoft.com/security/pc-security/password-checker.aspx rather...
Click to expand...

Dude:

IMPORTANT!!! What this calculator is NOT . . .

It is NOT a “Password Strength Meter.”

Since it could be easily confused for one, it is very important for you to understand what it is, and what it isn't:

The #1 most commonly used password is “123456”, and the 4th most common is “Password.” So any password attacker and cracker would try those two passwords immediately. Yet the Search Space Calculator above shows the time to search for those two passwords online (assuming a very fast online rate of 1,000 guesses per second) as 18.52 minutes and 17.33 centuries respectively! If “123456” is the first password that's guessed, that wouldn't take 18.52 minutes. And no password cracker would wait 17.33 centuries before checking to see whether “Password” is the magic phrase.
Click to expand...
 
Kgabogk said:
google acc alert indicate that my acc has been accessed by another ip adress in the US, is it google technicians working on my acc or has my acc been compromised?
n any other location. However, there
may be sessions that have not been
signed out. Sign out all other sessions Recent activity: Access Type [ ? ] (Browser,
mobile, POP3,
etc.) Location (IP address) [ ? ] Date/Time (Displayed
in your
time zone) Browser * 82.1xxx4 9:14 pm (0
minutes
ago) Browser * 82.xxx121 5:17 pm
(3.5 hours
ago) Browser South Africa
(41.16.207.132) 3:55 pm (5
hours ago) IMAP United States
(64.57.242.91) 10:59 am
(10 hours
ago) IMAP United States
(64.57.242.93) 10:52 am
(10 hours
ago) IMAP United States
(64.57.242.90) 10:45 am
(10 hours
ago) IMAP United States
(64.57.242.94) 10:39 am
(10 hours
ago) IMAP United States
(64.57.242.92) 10:33 am
(10 hours
ago) IMAP United States
(64.57.242.87) 10:32 am
(10 hours
ago) IMAP United States
(64.57.242.88) 10:17 am
(10 hours
ago) Alert preference: Show an alert for unusual activity. change * indicates activity from the current session. This computer is using IP address
82.xxx
Click to expand...

Nope.
You have checked email using NOKIA mobile/cellphone. And most probably used mail widget/app.
64.57.242.88 belongs to NOKIA.

IP address [?]: 64.57.242.88 [Whois] [Reverse IP]
IP country code: US
IP address country: ip address flag United States
IP address state: Georgia
IP address city: Suwanee
IP postcode: 30024
IP address latitude: 34.0535
IP address longitude: -84.0659
ISP of this IP [?]: Quality Technology Services
Organization: NOKIA
Host of this IP: [?]: em-outgoing2.sc2.messaging.nokia.com [Whois] [Trace]
Local time in United States: 2011-06-03 06:19
Sorry for my bad English.
 
If the google alert came with via an email and has a login connection box. I would not attempt to log in directly from the email.

I have a feeling that you are gonna have some phishing scams piggy backing on the back end of this Chinese google scare.
 
smopel said:
Nope.
You have checked email using NOKIA mobile/cellphone. And most probably used mail widget/app.
64.57.242.88 belongs to NOKIA.

IP address [?]: 64.57.242.88 [Whois] [Reverse IP]
IP country code: US
IP address country: ip address flag United States
IP address state: Georgia
IP address city: Suwanee
IP postcode: 30024
IP address latitude: 34.0535
IP address longitude: -84.0659
ISP of this IP [?]: Quality Technology Services
Organization: NOKIA
Host of this IP: [?]: em-outgoing2.sc2.messaging.nokia.com [Whois] [Trace]
Local time in United States: 2011-06-03 06:19
Sorry for my bad English.
Click to expand...

you are giving me hope,gmail is my primary email,i can't quantify the damage that someone would do if my pssword has been compromised,iwill use the mail widget on my phone and see if i can reproduce this alert
 
HavocXphere said:
Add 2 factor authentication to your account & call it a day.
Click to expand...

I had 2-step authentication on my account. I then one day decided to change my gmail password via the web interface from a PC. I expected to get a notification on my android phone that I need to enter the new password. This however did not happen and I still received push gmail on my phone! I changed the password again and still the phone had full access to my gmail account. In the end I removed 2-step authentication via a PC web browser, logged out all other sessions and removed authorised devices from my account and only after a reboot of the phone was I prompted to provide the new password. I feel 2-step verification may be a security risk if your phone gets stolen although I am no expert on this but I was very surprised by the fact that changing your gmail password does not log your android phone out of the account.
Perhaps someone else can shed some light here? I mean its not like you can send an sms to your stolen phone asking the thief to please reboot the thing for you.
 
damn!its the damn email widget,but why is it giving my location as US? and why does it keep on changing the ip adress?what a reliev..,
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X