Pages:
Author

Topic: Am I safe ? (Read 338 times)

legendary
Activity: 1232
Merit: 1091
May 14, 2018, 01:38:18 PM
#32
2 step verification is the only solution to make it 99.99% secure .
also use only google authentication app bcoz we can trust this developer .

2FA is only highly secure when you make sure that you access Google Authenticator through a mobile phone that's connected to a seperate internet connection. In my case I have a smartphone with a mobile internet connection solely meant to host Google Authenticator, and it works like a charm. There have been several cases already where people connected all their devices to the same network and they got their accounts drained like it didn't cost any effort. Everything comes down to how you set up and use everything. 2FA is only worthwhile in case of proper usage. Blindly trusting in 2FA is dangerous, very much so.
Ctn
sr. member
Activity: 644
Merit: 259
May 14, 2018, 12:08:14 PM
#31
I just opened my email to check it as I do every day and I saw 3 different IP had logged in my SKRILL account. I immediately didn't change password but added 2FA Authentication for Skrill. There is no way they to have find my Google password as I have it with 2FA too.
Am I safe or should I also change the password ?

Wow if I were you then I would have immediately notified google support about that and change the password immediately. Then comes the step of adding the 2FA authentication. However, adding it later on wont matter if those hackers have already logged in with your google account.

You should immediately visit the account and settings page where you can get the access to "log out from all devices" option and immediately click that one. This will log you out as well as it will log out all the devices connected to you from that particular google account. Its best if you are not certain about your privacy setting.
hero member
Activity: 2716
Merit: 552
May 14, 2018, 03:50:31 AM
#30
Well, that is a very good point, lets add that up as one of the reasons.
 We had a discussion here regarding this issue couple of months ago and I was suggesting them that maybe these emails have been used in different website discussions about cryptocurrency, but there were who claimed that they didnt used their emails from any other website except the exchange. So, what we are suspecting was, the involvement of the exchanges in such issue. Idk really, but that was just the closest theory that we ever come up with. I could be wrong, least we can do here is to regularly check our accounts and emails to prevent from being robbed.
You can use free service such as haveibeenpwned.com to notify you if a website containing your data were hacked.
I doubt exchange would sell their customers data, the risk when being found out is too high. It's more believable if an exchange got hacked and its data leaked to internet.
Case of Bitcoin exchange being hacked are not new here, There's always at least one exchange hacked in a year.

Thanks for the extra tip. I doubt that as well, but there are those who insistand that made me on the verge of believing it, but that would be too risky with the exchange's  integrity. 
Hackers who can succesfully access the customers essential info can also be bad to the exchanger's image.
Neverthless, these are just one of the risks in investing to cryptocurrency and it would be better if we help each other to prevent this from happening to our fellow investors.
jr. member
Activity: 252
Merit: 4
EQUAL Network Token
May 11, 2018, 10:08:40 PM
#29
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!

Well, that is a very good point, lets add that up as one of the reasons.
 We had a discussion here regarding this issue couple of months ago and I was suggesting them that maybe these emails have been used in different website discussions about cryptocurrency, but there were who claimed that they didnt used their emails from any other website except the exchange. So, what we are suspecting was, the involvement of the exchanges in such issue. Idk really, but that was just the closest theory that we ever come up with. I could be wrong, least we can do here is to regularly check our accounts and emails to prevent from being robbed.

Maybe, just make a strong password will be at least 8 characters in length, but the more the better. The longer (more characters) your password is, the more time it will take the hacker to crack it.

password is not safe totally , even if you set strong password with letters and numbers combo and 15 characters long , then too there are high chances of hack . 2 step verification is the only solution to make it 99.99% secure .
also use only google authentication app bcoz we can trust this developer .
jr. member
Activity: 252
Merit: 4
EQUAL Network Token
May 11, 2018, 10:05:50 PM
#28
if someone login your skrill account then you should change the password for all sites if same password used anywhere else .
also for skrill change pwd , don't 2FA is extra layer of security , don't take it as only layer .
also find out how they got your password , it is too weak or you use common password for all sites , if you do use common password then you are at big risk .
hero member
Activity: 714
Merit: 528
May 11, 2018, 06:55:08 PM
#27
Well, that is a very good point, lets add that up as one of the reasons.
 We had a discussion here regarding this issue couple of months ago and I was suggesting them that maybe these emails have been used in different website discussions about cryptocurrency, but there were who claimed that they didnt used their emails from any other website except the exchange. So, what we are suspecting was, the involvement of the exchanges in such issue. Idk really, but that was just the closest theory that we ever come up with. I could be wrong, least we can do here is to regularly check our accounts and emails to prevent from being robbed.
You can use free service such as haveibeenpwned.com to notify you if a website containing your data were hacked.
I doubt exchange would sell their customers data, the risk when being found out is too high. It's more believable if an exchange got hacked and its data leaked to internet.
Case of Bitcoin exchange being hacked are not new here, There's always at least one exchange hacked in a year.

Maybe, just make a strong password will be at least 8 characters in length, but the more the better. The longer (more characters) your password is, the more time it will take the hacker to crack it.
You can use KeepPass to store and generate random password with more than 25 characters long, but if a website stores your password without salting or even worse, a plain text then it won't matter how many characters you set on your password.
newbie
Activity: 149
Merit: 0
May 11, 2018, 12:37:13 AM
#26
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!

Well, that is a very good point, lets add that up as one of the reasons.
 We had a discussion here regarding this issue couple of months ago and I was suggesting them that maybe these emails have been used in different website discussions about cryptocurrency, but there were who claimed that they didnt used their emails from any other website except the exchange. So, what we are suspecting was, the involvement of the exchanges in such issue. Idk really, but that was just the closest theory that we ever come up with. I could be wrong, least we can do here is to regularly check our accounts and emails to prevent from being robbed.

Maybe, just make a strong password will be at least 8 characters in length, but the more the better. The longer (more characters) your password is, the more time it will take the hacker to crack it.
hero member
Activity: 2716
Merit: 552
May 10, 2018, 11:24:41 PM
#25
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!

Well, that is a very good point, lets add that up as one of the reasons.
 We had a discussion here regarding this issue couple of months ago and I was suggesting them that maybe these emails have been used in different website discussions about cryptocurrency, but there were who claimed that they didnt used their emails from any other website except the exchange. So, what we are suspecting was, the involvement of the exchanges in such issue. Idk really, but that was just the closest theory that we ever come up with. I could be wrong, least we can do here is to regularly check our accounts and emails to prevent from being robbed.
hero member
Activity: 2996
Merit: 609
May 10, 2018, 02:30:07 PM
#24
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!
Since I was able to passed up bitter experience when it comes to hacked due on having that habit on using up single email on all sorts of accounts either on my game accounts or on investment side which it was exposed and been hacked and it do repeats since my password was also just the same.After scenario I had learned and now that simple etiquette that you mention is what I'm doing now.
legendary
Activity: 1932
Merit: 1273
May 10, 2018, 09:46:35 AM
#23
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!
We have no proof that exchanges and online wallet services expose or not exposing our email address, so the possibility exists. Actually, different email for many sites isn't required too much, the only thing essentials are to use a strong password for every site that we sign up.
legendary
Activity: 2170
Merit: 1427
May 10, 2018, 08:32:52 AM
#22
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already.
No, exchanges and online wallet services aren't exposing people's email addresses. People use one email address for basically everything. In most cases faucets and other trash sites get hacked and their database leaked, so with all that information the hackers try to gain access to exchanges and online wallet services, which is their only objective obviously. With how crypto has increased in value lately these log-in attempts have increased as well.

In other words, use a shitty email account for faucets whatnot, and use new highly secured email accounts for important services. This is common internet etiquette, come on!
hero member
Activity: 2716
Merit: 552
May 10, 2018, 02:45:28 AM
#21
This kind of issue has become so rampant these days. I dont believe this at first, but some of the exchanges and other online wallets are exposing their customer's email addresses, thats why we're recieving login attempts from different places and it is very alarming already. In this situation we would realize how useful 2FA are, and we must keep it from being exposed as well.
legendary
Activity: 1624
Merit: 1130
Bitcoin FTW!
May 09, 2018, 06:42:41 PM
#20
2FA's about as good as you can get with the methods Skrill offers for account security, and I have yet to be hacked on any account with Google and Authy 2FA enabled.

In the future, try to not always use the same email address or password for signing up on websites, and if your email does show up on a site like https://haveibeenpwned.com/, change your password and make sure it's sufficiently long (I always use passwords longer than 15 characters). I get emails stating that some of my accounts on very old crypto services have been logged into from unusual IP addresses every now and then (the sites don't allow those IPs to login), and I change my passwords to something unique every time, and these alerts have almost completely stopped coming.
member
Activity: 322
Merit: 23
May 09, 2018, 02:11:53 PM
#19
I guess it is safe now because you already make the 2FA, you do not need to change your password I think.
Anyway, make sure that you make an account to some site do not include any words that you use in password because hacker might use all info that they might see there.

To be in the safe side, I would rather change everything related to that account, because we all know that hackers is really one step ahead of us. I wouldn't mind doing everything in my power not to give any advantage to them. As @Lucius have shared, 2FA can really be breached, which is very scary to all of us. The OP is just lucky that he doesn't have any funds deposited on that account, otherwise it will be wipe out in a snap of a finger.
Yeah, why not to change everything related to his account if there are 3 attempts to his account that possible to be a hack.
Good thing there is 2FA added that a make strong our account security that not possible to hack by the evil people that want easy money to have. To OP, if I were in your place I change everything passwords and others just for sure.
legendary
Activity: 3080
Merit: 1353
May 09, 2018, 05:40:17 AM
#18
I guess it is safe now because you already make the 2FA, you do not need to change your password I think.
Anyway, make sure that you make an account to some site do not include any words that you use in password because hacker might use all info that they might see there.

To be in the safe side, I would rather change everything related to that account, because we all know that hackers is really one step ahead of us. I wouldn't mind doing everything in my power not to give any advantage to them. As @Lucius have shared, 2FA can really be breached, which is very scary to all of us. The OP is just lucky that he doesn't have any funds deposited on that account, otherwise it will be wipe out in a snap of a finger.
newbie
Activity: 61
Merit: 0
May 06, 2018, 05:38:07 PM
#17
I guess it is safe now because you already make the 2FA, you do not need to change your password I think.
Anyway, make sure that you make an account to some site do not include any words that you use in password because hacker might use all info that they might see there.
legendary
Activity: 3094
Merit: 1127
May 06, 2018, 01:15:07 PM
#16
It happens when you used the same email to register on any websites especially related to cloud mining sites or any related sites, they sold those email to any people/company/organizations. So if Skrill does have a feature to change email then try to change it since I can't assure that 2FA is enough, there are so many reports from exchanges or any sites related to crypto with the 2FA enabled accounts getting hack plus try to change your password to a strong one.
Yes,this might be the reason for the unknown login but I don't think they have the feature to change the email address,Am I right?

But I am little bit shocked that how someone can hack the two factor authenticated account without the authentication code it is impossible to login right?

Nothing is completely safe,so neither 2FA does not represent complete safety.There are some methods that hackers use to hack / bypass 2FA.

I advise OP to change his password,e-mail and everything else that have any connection with that SKRILL account.It's always wise to have separate e-mail accounts for different services,in this way we can prevent hackers to know which e-mail is connected with certain service.
Thanks for giving out that link which i didnt expect even 2fa can really be possibly breach by anyone.The thing here is that we should really changed all informations like passwords and emails.Once it has being breached by someone then they do already know that they can possibly attached those informations into other possible account of yours. Making different emails for a certain account is suggested.
member
Activity: 266
Merit: 12
May 06, 2018, 11:30:54 AM
#15
Personally, one login attempt from a different IP that I know nothing of will make me change my password not to talk of three, I may sound paranoid but at least, it's better than lossing my money. Though, the Two Factor Authentication can give you a sense of safety, but  you shouldn't completely depend on it. Just to be on a safer side, take the advice here and change your password to avoid unnecessary stories.
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
May 06, 2018, 06:03:04 AM
#14
It happens when you used the same email to register on any websites especially related to cloud mining sites or any related sites, they sold those email to any people/company/organizations. So if Skrill does have a feature to change email then try to change it since I can't assure that 2FA is enough, there are so many reports from exchanges or any sites related to crypto with the 2FA enabled accounts getting hack plus try to change your password to a strong one.
Yes,this might be the reason for the unknown login but I don't think they have the feature to change the email address,Am I right?

But I am little bit shocked that how someone can hack the two factor authenticated account without the authentication code it is impossible to login right?

Nothing is completely safe,so neither 2FA does not represent complete safety.There are some methods that hackers use to hack / bypass 2FA.

I advise OP to change his password,e-mail and everything else that have any connection with that SKRILL account.It's always wise to have separate e-mail accounts for different services,in this way we can prevent hackers to know which e-mail is connected with certain service.
hero member
Activity: 826
Merit: 518
May 06, 2018, 03:31:51 AM
#13
It happens when you used the same email to register on any websites especially related to cloud mining sites or any related sites, they sold those email to any people/company/organizations. So if Skrill does have a feature to change email then try to change it since I can't assure that 2FA is enough, there are so many reports from exchanges or any sites related to crypto with the 2FA enabled accounts getting hack plus try to change your password to a strong one.
Yes,this might be the reason for the unknown login but I don't think they have the feature to change the email address,Am I right?

But I am little bit shocked that how someone can hack the two factor authenticated account without the authentication code it is impossible to login right?
Pages:
Jump to: