Single Status Update
Two days ago I went to login to my gmail account. Rather than listing my deluge of spam and nonsensical emails, I was presented with a curious message: my account had been disabled. I thought, what strange happenings are occurring here?
After getting it reenabled*, I had a look around. Low and behold there were 10 rejected messages, messages I had not sent. I delved deeper and obtained the rejection message and the reason the account had been disabled - suspicious activity had been detected.
Checking the account activity, someone in Turkey had accessed my account and attempted to send the drug pharmacy messages (one to codeimp even).
It wasnt for another 10 minutes that I realized the risk of this intrusion - this was my main email account, with countless emails about accounts and other sensitive data. While it seems they only tried to send messages, they had access for an unknown amount of time and could have downloaded the entire content of the mailbox.
Whats to blame for all this? I suspect a malicious Android app, but I cant be sure, the only evidence was that it was accessed from Turkey on a mobile. Suffice to say all of my passwords are now changed and bad habits suddenly broken; Im a system engineer and should have known better.
*which was a strangely easy affair, just entering a code sent to my phone, that I also entered: what was to stop anyone else doing that and gaining access?
- Show previous comments 14 more
I heard on the radio just a few minutes ago that a large database firm that handles the email accounts of something like 50 companies has been hacked very recently. The hacking and phishing attempts have been pretty widespread over the past few days, according to this news brief. They didn't mention whether Google was affected or not. It may not be related at all.
The company involved probably does email messaging and marketing for it's corporate clients - and according to this story there's a lot more than 50 businesses involved.
"A relatively unknown company called Epsilon came forward last week and confessed that its email database had been hacked. But this was not just any database; this was one used by industry heavyweights like Disney Destinations, banks such as Citibank, Capital One and Chase, and stores like Walgreens and Kroger."
"According to a press release, Epilson has more than 2,500 business clients and sends out -- wait for it -- 40 billion emails a year."
This is going to be bad news for a lot of people.