Your awesome thanx for the notice. I pretty pissed my email was in there but i was using a strong password.
I only registered to MTGOX on Tuesday and my password was iamdana1qaz0p;/ so I think I'm safe.
Topic: Gmail unusual activity (Read 18366 times)
Mike Hearn, the google fraud engineer who develops BitcoinJ, got the list and forced a password reset for all gmail accounts in that list.
I don't think that's true. I've just tried logging into [email protected] which was on the list, and it's working as usual. I've not changed the password or been told about 'unusual activity'. I didn't use the MtGox password anywhere else though, so I'm not worried.
I mean it's not true that he forced a password reset for all gmail accounts on that list, because my gmail account is on that list, and no password reset was forced on my account.
It's basic logic. Re-reading the whole thread won't change anything.
Mike Hearn, the google fraud engineer who develops BitcoinJ, got the list and forced a password reset for all gmail accounts in that list.
I don't think that's true. I've just tried logging into [email protected] which was on the list, and it's working as usual. I've not changed the password or been told about 'unusual activity'. I didn't use the MtGox password anywhere else though, so I'm not worried.
I got my account deactivated today too. I never signed up for MtGox though, I wonder if they were just locking down all e-mails associated with Bitcoin.
Mike Hearn, the google fraud engineer who develops BitcoinJ, got the list and forced a password reset for all gmail accounts in that list.
I don't think that's true. I've just tried logging into [email protected] which was on the list, and it's working as usual. I've not changed the password or been told about 'unusual activity'. I didn't use the MtGox password anywhere else though, so I'm not worried.
someone on reddit posted a photo of the hashed passwords, with the clear text password next to it. the clear text is only the first two characters then blurred out.
Mike Hearn, the google fraud engineer who develops BitcoinJ, got the list and forced a password reset for all gmail accounts in that list.
I would just like to say thanks to Mike and the google people for doing this. I didn't have the same password for google, so I was fine but I am glad you had the sense to take the necessary steps to mitigate the danger of a wider breach.
edit: oh and super pissed with mtgox right now. what kind of a dog and pony show are they running over there?
edit: oh and super pissed with mtgox right now. what kind of a dog and pony show are they running over there?
I use gmail for some things, but luckily not for this. If I did, I'd be super pissed at Google right now. I use different passwords at different sites, so there'd be zero chance of a hacker getting into my gmail account because of knowing a hash of my mtgox password. The inconvenience and condescending nature of involuntarily locking my account when I am fully aware it won't be compromised is monumental. Plus, it's freakin' creepy. Every day I like gmail less and less.
I feel completely different. Forcing a password change only takes a few seconds. Just because YOU didnt use the same password elsewhere means that you are only one of the 25% who do that.. 75% of people share the same password everywhere.
This means that if google knows there is a big password breech by NOT forcing a password change they are knowingly letting people have their accounts compromised and could probably even get set up for a nasty lawsuit.
Well you're probably right that 75% or more of people reuse passwords across sites. However, I resent suffering just because a bunch of people have the same locks on their house, car, and work, and hung their keys up on the outside of their cubicle. I guess gmail is just for people who need the hand holding since they are too lazy to use basic security.
I can't log back into my account after changing my password. 
Thanks for Google recognizing that my account may be breached (I'm pretty sure it is, I'm having trouble logging into Facebook). Sent a "stolen account" inquiry, hopefully I'll get my account back. Oddly enough, due to cookies I can still sign into YouTube. 
EDIT: And after all this time I work out that the password leaked is the one that I made using KeePass, not my "ehh put in a password" password. Yay! I think.
Thanks for Google recognizing that my account may be breached (I'm pretty sure it is, I'm having trouble logging into Facebook). Sent a "stolen account" inquiry, hopefully I'll get my account back. Oddly enough, due to cookies I can still sign into YouTube. EDIT: And after all this time I work out that the password leaked is the one that I made using KeePass, not my "ehh put in a password" password. Yay! I think.
I appreciate that Google is being proactive on this.
One question, though...I noticed it because my phone couldn't connect to e-mail. When I logged in from the web site, it told me about the "suspicious activity" and had me change my password. Had I not noticed and done this, and had someone hacked my password (not possible, since I didn't use the same password for MtGox as I did on Gmail, both were independently generated random strings), wouldn't they have just gotten to pick my "new" Gmail password when they logged in with the old one?
One question, though...I noticed it because my phone couldn't connect to e-mail. When I logged in from the web site, it told me about the "suspicious activity" and had me change my password. Had I not noticed and done this, and had someone hacked my password (not possible, since I didn't use the same password for MtGox as I did on Gmail, both were independently generated random strings), wouldn't they have just gotten to pick my "new" Gmail password when they logged in with the old one?
No more MtGOX for 3 weeks 
. Hope that TH will stand this mass migration wave (two hours ago it was hot as hell and as fast as snail because of overload).
BTW, I didn't receive any messages or notifications from Google as far as my account was compromised as well. Am I doing something wrong
? So, probably Gmail is smart enough to mention that I've changed my password just after seen strange activities on Mtgox recently (ten minutes before the final crush)...
. Hope that TH will stand this mass migration wave (two hours ago it was hot as hell and as fast as snail because of overload).BTW, I didn't receive any messages or notifications from Google as far as my account was compromised as well. Am I doing something wrong
? So, probably Gmail is smart enough to mention that I've changed my password just after seen strange activities on Mtgox recently (ten minutes before the final crush)... I use gmail for some things, but luckily not for this. If I did, I'd be super pissed at Google right now. I use different passwords at different sites, so there'd be zero chance of a hacker getting into my gmail account because of knowing a hash of my mtgox password. The inconvenience and condescending nature of involuntarily locking my account when I am fully aware it won't be compromised is monumental. Plus, it's freakin' creepy. Every day I like gmail less and less.
I feel completely different. Forcing a password change only takes a few seconds. Just because YOU didnt use the same password elsewhere means that you are only one of the 25% who do that.. 75% of people share the same password everywhere.
This means that if google knows there is a big password breech by NOT forcing a password change they are knowingly letting people have their accounts compromised and could probably even get set up for a nasty lawsuit.
same shit.
but what interesting, not only mtgox account-related e-mail was compromised, but e-mail, related to THIS forum, was too.
in result of e-mail-related leakage, some people, make some phonecalls[in Russian lang], in terms, related to e-mail[pretend to b careful/cunning ?].for anyone related to law Russian enforcement, can provide phone numbers.
but what interesting, not only mtgox account-related e-mail was compromised, but e-mail, related to THIS forum, was too.
in result of e-mail-related leakage, some people, make some phonecalls[in Russian lang], in terms, related to e-mail[pretend to b careful/cunning ?].for anyone related to law Russian enforcement, can provide phone numbers.
I find it to be quite interesting that government run gmail was so quick to react to this situation
I got it too, and I use a completely different (and stronger) password for Gmail than my password from MtGox. Gmail's logs show no access from unusual IPs, so I assume somebody was just trying to use my MtGox password on Gmail.
Or maybe google have just been on the fucking ball on this. I use a different password on google. I've just been made to change it though. Now I'm gonna have to change the password on a lot of other sites too. Fucking great work guys.
Get fucked mtgox, this is massively damaging to bitcoin and frankly, inexcusable incompetence.
I use gmail for some things, but luckily not for this. If I did, I'd be super pissed at Google right now. I use different passwords at different sites, so there'd be zero chance of a hacker getting into my gmail account because of knowing a hash of my mtgox password. The inconvenience and condescending nature of involuntarily locking my account when I am fully aware it won't be compromised is monumental. Plus, it's freakin' creepy. Every day I like gmail less and less.
HAHA such a load of cocktardism, they effectively did a huge favour/service for everyone but you would find some sort of problem with it and badmouth the shit out of them.
I use gmail for some things, but luckily not for this. If I did, I'd be super pissed at Google right now. I use different passwords at different sites, so there'd be zero chance of a hacker getting into my gmail account because of knowing a hash of my mtgox password. The inconvenience and condescending nature of involuntarily locking my account when I am fully aware it won't be compromised is monumental. Plus, it's freakin' creepy. Every day I like gmail less and less.
How is google supposed to know if you use the same password or not? If they didn't lock it and you got hacked, you'd be complaining that they didn't lock it when they know your email address had been listed with other details that could lead to your account being compromised.
IMO google locking the accounts is a good thing. You can't have icing on both sides of your cake.
I use gmail for some things, but luckily not for this. If I did, I'd be super pissed at Google right now. I use different passwords at different sites, so there'd be zero chance of a hacker getting into my gmail account because of knowing a hash of my mtgox password. The inconvenience and condescending nature of involuntarily locking my account when I am fully aware it won't be compromised is monumental. Plus, it's freakin' creepy. Every day I like gmail less and less.
Just wanted to say: my account on this site got hacked, my Steam account got hacked (with over $500+ worth of games on it), and who knows what else got hacked.
Suffice to say I'm fucking pissed.
Suffice to say I'm fucking pissed.
Jump to: