Hacker attempt on gmail account

jtcnj · Thu Sep 10, 2020 10:41 am

Sharing.....

I got an alert from Google that one of my gmail accounts was attempting to be logged into from an unknown device, origin listed as Russia

- with the CORRECT password.
I use this password for other lower security level logins -but need to change the hierarchy and change some site passwords following it.

Anyway, I think I used this password for my MOMO account, and it is the only thing I signed up for recently/ past 6 months or so.
I cant say if the hack came from there or not, but it is also the only site I / we left with bad blood flowing.

fatjack · Thu Sep 10, 2020 12:00 pm

Could be something else was hacked, But if MOMO was datamining I'd bet it was sold .

fullonshred · Thu Sep 10, 2020 5:33 pm

I had one that CLAIMED to be from Outlook but was not, with same Russian Hacker story. No password was mentioned in mine. I too figured it was MoMo related. I changed the passwords to my emails associated with both the Good old AGF and the Momo crapshow shortly after I was done with the Good Old AGF site.

In my case the email was 100% Phishing for Info.

Thu Sep 10, 2020 5:37 pm

I just wish the spam I've been getting since momo would go away!
I put them on autodelete based on origin url not email account of sender,
but there are new url's virtually daily!

Thu Sep 10, 2020 6:08 pm

jtcnj wrote: ↑Thu Sep 10, 2020 10:41 am Sharing.....

I got an alert from Google that one of my gmail accounts was attempting to be logged into from an unknown device, origin listed as Russia - with the CORRECT password.
I use this password for other lower security level logins -but need to change the hierarchy and change some site passwords following it.

Anyway, I think I used this password for my MOMO account, and it is the only thing I signed up for recently/ past 6 months or so.
I cant say if the hack came from there or not, but it is also the only site I / we left with bad blood flowing.

Didn't get it from here. EVERY SINGLE attempted registration is "pending" until the IP address can be confirmed thru various tools available to the Admin and Moderators.

If it smells like "Dead Fish" it gets deleted and the ENTIRE range of the IP address in banned.

Since we started up, we had one slip thru that spammed the board early on. That was mitigated by Mickey. I'd wager we've had well over 100 attempts to register and spam this board since then. Not one has gotten thru.

Razzle · Thu Sep 10, 2020 6:15 pm

Two weeks ago I got a message, I think it was ransomware garbage, where they listed a password I used and it was correct, it was the password I used on the momo board. I wish I had never created an account on that piece of trash

Thu Sep 10, 2020 8:36 pm

Razzle wrote: ↑Thu Sep 10, 2020 6:15 pm Two weeks ago I got a message, I think it was ransomware garbage, where they listed a password I used and it was correct, it was the password I used on the momo board. I wish I had never created an account on that piece of trash

Our worst fears are realized.

MOFO has "whored out" early as their security and/or selling of member data is now revealed since they realize their hostile takeover of the Old AGF has yielded didley squat.

I am SO farking glad WE started this board.

uwmcscott · Thu Sep 10, 2020 8:40 pm

Glad i never signed in over there on Momo. You have to be extra careful these days.

dearlpitts · Fri Sep 11, 2020 2:17 am

.me too

glasshand · Fri Sep 11, 2020 8:04 am

Firstly, are you sure it was actually from Google? We've seen a lot of email lately where they try to frighten you into doing something by proving that they have your password. I also don't remember Google ever sending a message about a login attempt that explicitly said something about the password, although it's been a long time since I got one at all.

"I use this password for other lower security level logins" - also why we should use separate passwords for everything! And two-factor authentication for everywhere that makes it an option.

And lastly, there is always the possibility it was a mistake. I had a scare a while back when Google showed my login history as including logins from Jordan, where I have definitely never been. That got cleared up when it proved that our corporate network was mistakenly being geolocated as being in Jordan instead of New Jersey.

jtcnj · Fri Sep 11, 2020 10:01 am

+1 on separate passwords, but it becomes cumbersome quickly so I grouped into a security level hierarchy.
Wasnt 100% consistent and I need to get them sorted.

Chocol8 · Fri Sep 11, 2020 11:08 am

I use a password manager. Every site has its own long and random password. If a hacker gets their hands on one, it won’t help them with any other.

Flatline · Fri Sep 11, 2020 11:25 am

I use Bit Warden password manager and try to use auto generated unique passwords as much as I can. I also enable two-factory authentication for every site that supports it.

honyock · Fri Sep 11, 2020 1:33 pm

one of my dead accounts, Hulu, that was tied to the same email and had a shared password with MoMo was hacked shortly after the ownership change was announced.

It was one of the few things I had not gone to unique randomly created passwords because I thought the account was completely dead, so I am fairly certain that was the source.

https://www.aguitarforum.net/viewtopic. ... 3626#p3626

MichaelR · Fri Sep 11, 2020 3:23 pm

uwmcscott wrote: ↑Thu Sep 10, 2020 8:40 pm Glad i never signed in over there on Momo. You have to be extra careful these days.

I absolutely agree Mickey, I visited the site maybe twice but never registered and boy am I glad I didn't!