Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 08-01-2019, 14:46
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
Somebody busy trying sync hotmails for years.

Is it any cause for concern?

This thing started probably a few years ago. I didnt check security login history until the last 2 years that I take notice.

Got a few regular hotmails that I use daily. The histoy show sync fail from different countries including Europe and Asia.
Reply With Quote
  #2  
Old 08-02-2019, 02:51
atom0s's Avatar
atom0s atom0s is offline
Family
 
Join Date: Jan 2015
Location: 127.0.0.1
Posts: 327
Rept. Given: 25
Rept. Rcvd 107 Times in 52 Posts
Thanks Given: 49
Thanks Rcvd at 559 Times in 223 Posts
atom0s Reputation: 100-199 atom0s Reputation: 100-199
Probably just typical bruteforce attempts to log into accounts with insecure passwords. If they are accounts you care about and want to protect, change the passwords to something extremely difficult to brute (mixed case, symbols, extra long, etc.) as well as enable 2-factor authentication on them.
__________________
Personal Projects Site: https://atom0s.com
Reply With Quote
  #3  
Old 08-06-2019, 01:34
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
Nothing important inside, passwords already changed, but the attempts occuring as a monthly event. Dont they ever give up?
Reply With Quote
  #4  
Old 08-06-2019, 03:20
atom0s's Avatar
atom0s atom0s is offline
Family
 
Join Date: Jan 2015
Location: 127.0.0.1
Posts: 327
Rept. Given: 25
Rept. Rcvd 107 Times in 52 Posts
Thanks Given: 49
Thanks Rcvd at 559 Times in 223 Posts
atom0s Reputation: 100-199 atom0s Reputation: 100-199
Quote:
Originally Posted by Max View Post
Nothing important inside, passwords already changed, but the attempts occuring as a monthly event. Dont they ever give up?
It's almost always automated. They find your email either from a dump that is posted online somewhere, or bought within a bundle of leaked information on the dark web. Then that information is used with bruteforcing tools to try and break into as many emails as possible from said lists they obtain.

Same thing happens with other online services, such as things like remote desktop access to servers, IP cameras, other site logins that could contain personal information such as banking, Paypal, Stripe, other payment sites, etc.

If you use those emails with certain sites, they will have a greater value to be broken into so depending on where it came from dump wise. If it's just every day emails they are probably not at all interested, but if you do use it with certain sites, even if it's simple stuff like a site that offers hidden VIP sections, special downloads etc. they could be interested in that.
__________________
Personal Projects Site: https://atom0s.com
Reply With Quote
  #5  
Old 09-23-2019, 13:19
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
Come to think of it, probably sites where I get free things or trials and also games but the games site mostly already shutdown.
Reply With Quote
  #6  
Old 04-29-2020, 14:01
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
Attached some photos how the attempt looks like.

As I dig more the leak seem to be from emails, skypes and bygones sites. Some sites even have my phone number.

Anyone still using skype?
Attached Images
File Type: jpg 1.jpg (86.9 KB, 22 views)
File Type: png 2.png (43.8 KB, 11 views)
File Type: png 3.png (81.9 KB, 10 views)
File Type: jpg 4.jpg (71.5 KB, 10 views)
Reply With Quote
  #7  
Old 01-01-2021, 16:24
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
An update, the sync attempts never dies down, now even attempted login also been detected more often.

I also discover when checking login activity status, the current login session show me logged from another country. I'm totally bewildered.
Reply With Quote
  #8  
Old 01-01-2021, 18:47
Kurapica's Avatar
Kurapica Kurapica is offline
VIP
 
Join Date: Jun 2009
Location: Archives
Posts: 141
Rept. Given: 15
Rept. Rcvd 129 Times in 37 Posts
Thanks Given: 32
Thanks Rcvd at 240 Times in 52 Posts
Kurapica Reputation: 100-199 Kurapica Reputation: 100-199
Is the account compromised ?

Why don't you change the password and increase your security measures ?
Reply With Quote
  #9  
Old 01-04-2021, 20:52
ARUBA ARUBA is offline
Friend
 
Join Date: Dec 2018
Posts: 25
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 57
Thanks Rcvd at 51 Times in 21 Posts
ARUBA Reputation: 0
1. sign-off everywhere
2. change passwords, use a password generator (the one integrated in Keepass is ok) and add/change some characters with % & *( , etc
3. use multi factor auth
Reply With Quote
  #10  
Old 02-11-2021, 21:39
tusk tusk is offline
Friend
 
Join Date: Jun 2016
Posts: 27
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 5
Thanks Rcvd at 12 Times in 8 Posts
tusk Reputation: 0
Yep, I added 2FA on all my accounts.
Never had any problem but i still feel way safer
Reply With Quote
  #11  
Old 02-12-2021, 03:33
Max Max is offline
Family
 
Join Date: Nov 2013
Posts: 78
Rept. Given: 28
Rept. Rcvd 50 Times in 23 Posts
Thanks Given: 38
Thanks Rcvd at 26 Times in 16 Posts
Max Reputation: 50
Password already changed, it just that sometimes when logged in and check geolocation status, all wrong, but if relogin on same browser again, problem gone. It's weird.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Last 5 years in reverse-engineering bLaCk-eye General Discussion 22 06-26-2015 09:14
RECOVERING HDD BARRACUDA 7200.11 500GB KNOWN BUSY PROBLEM sunilt General Discussion 2 03-17-2010 03:50
Happy new years 2008 to all member Zipdecode General Discussion 23 01-19-2008 00:00


All times are GMT +8. The time now is 05:12.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX
( 1998 - 2021 )