(OT) Google: "Somebody knows your password"

[Xen]

Volker Wysk schreef op 04-08-2017 16:11:

> Now, why *does* there be an "unknown device" listed on the google 
> accounts
> website???

Relax.

KMail might be buggy.

And Ralf is asking unnecessary questions.

So you did get html mail, it's not plain-text, and apparently Google did 
send you a mail about a login attempt that it blocked.

Sometimes these emails are just from the quick outlook of it 
indistinguishable from what a spammer would do.

Leading you by the hand and all that.

And hostile to a user because you can get locked out of your own device 
as well. "Nanny state".

Websites regularly get compromised. If you have used the same 
email/password combination somewhere else, that might be the culprit. 
That's all.

I recently got a violation warning from a very old MSN account that I 
hadn't used in years.

The password was used almost no where else except for a similar 
messenging service that *had* seen a hacking attempt somewhere in the 
past but they said no passwords were stolen.

Password files can be brute forced if stolen from a website. If you have 
a password that is shorter than say 9 characters it doesn't take too 
much time to brute force it. Normally websites should not store 
passwords in plain text but some do it.

Very few though.

I once had a social media account that had been taken over and they 
hadn't even changed the password.

That was really curious, there was all kinds of activity in the account 
(it was a game) but the password was still the same lol. Curious.