Someone keeps trying to access my accounts

[302w 83]

I keep getting emails, so far Twitter twice and Walmart once, that someone from a different device is attempting to access my accounts. They recommend I change my password.

 

WWYD? Abandon that address? I keep an eye on my bank accounts.

[MedicYeti 96]

Are you sure it's not phishing for information?

Contact Walmart and Twitter directly, not through the emailed links to check.

Change your password.

You should always keep an eye on your bank and credit card charges.

Good luck

[302w 83]

Not phishing, email address is [email protected]

 

I don't even use it, I should delete the account

[Vlad G 345]

Not phishing, email address is [email protected]

 

I don't even use it, I should delete the account

 

Email address in the form line doesn't mean much when it comes to phishing. Anyone can fake that.

[MartyZ 692]

You should never trust the "From" email address, it can easily be faked. Every time I get such emails I go directly to the company's website that I know or call them and ask if they sent me that email. NEVER, EVER, click the link in the email! 

[AverageJoe 95]

You bank and/or cc should have real time monitoring...we also have added fraud protection thru Zander...140/yr for the whole family...they don't ask for any SSN or anything but in event of identity theft/fraud they take care of everything. 

[jackandjill 683]

John Podesta email got hacked because he (or someone close to him) opened & clicked links in an email that claimed his account was compromised. 

 

1. Keep Calm

2. DO NOT click any links in that email 

3. Goto the site in question (twitter, walmart) directly and in a separate browser session

4. Login & change password

 

For sites / forums that you rarely use, set a random password (generated using something like https://www.random.org/passwords/),

instead of using the same password as your email account.  

[oldguysrule649 397]

If you use the same password on multiple sites, I recommend you make them unique and hard to guess. To keep track of the hundreds of passwords in my life, I use a simple utility called Keepass to store them in an encrypted file. So at a minimum, I just need to memorize the master password I use within Keepass.

[leahcim 679]

Often you can hover the mouse pointer over an email address to reveal the real, underlying address.  You can also hover any links to reveal the actual target (just do not click!)

I used to get a lot of fake ebay emails, promising all manner of dread consequence if I did not click to login and update my profile or something.

Ebay has a [email protected] to forward suspicious emails, and I believe they will follow up to tell you if it is legit or not.

 

Generally I will delete the email and login to my account via regular method, most bank and ebay accounts have a secure message area, anything legit should be available there.

 

Check the original email for poor grammar, spelling, mismatched case/plurals etc.  This stuff usually is foreign origin and fortunately English is difficult for them to write very well.

[Indianajonze 379]

just change your passwords and be done with it. invest in a nice, free password manager (i recommend lastpass) so you can randomize some ridiculous passwords and have the app auto fill them (and you never have to type UuFK*$!HdS$%$FG^W*Gg). good luck to anyone trying to crack passwords like that...

[Kevin125 4,772]

If you use the same password on multiple sites, I recommend you make them unique and hard to guess. To keep track of the hundreds of passwords in my life, I use a simple utility called Keepass to store them in an encrypted file. So at a minimum, I just need to memorize the master password I use within Keepass.

You can use a tool like Dashlane to organize your online passwords securely.

 

Make sure your primary email password is secure. Use a pass phrase. 17 characters is a good length. A pass phrase is a group of random words or slang that is easy to remember but not personally related to you or you activities.

 

Make sure your security questions can't be easily answered by someone else.

 

Use two factor authentication when its available. Thats typically where a PIN is sent to your cell as a text msg when you enter your username and password. Amazon and PayPal both support this.

 

Be aware that someone can contact webmail support for mail providers like Cable Companies and can bamboozle support staff into resetting a password. Why guess a password when you can set it? It happened to me. Incompetent staff.

 

Make sure your online bank account credentials are secure.

 

A lot of email that looks legit is often not what it seems to be. But if you do see an attempt to reset a password, go check that account and change everything about it.

 

Make sure your email isn't being redirected somewhere else. Some email providers let you set a forwarder for inbound email and it can be conditional. For example...someone changes your bank acct password or twitter password. Then you go to request a password reset via email. But the email never comes. That cld mean your email pswd was compromised and email from the other places.... The bank...twitter..etc..has been redirected to some other acct to make it harder to fix your password problem.

 

These scum bags are creative. Personally....I think its appropriate to drag them around town by chains behind your truck if caught. At least a little.......

[Golf battery 1,223]

If you give me your email address and password i can look into it for you.

[My1stGlock 144]

I know it can be a pain in the ass but I would recommend keeping at least two seperate email address for junk/order confirms and another one for banking. You could also enable additional securities like two factor authentication where a SMS text is sent to the phone as a secondary security measure. (Kevin already mentioned this)

 

It sounds a bit overkill but if they get to your banking info that's going to be a lot worse. It definitely sounds like phishing and by the way do these emails show up under the spam folder?