1. Download our Official Android App: Forums for Android!

Gmail hacked

Discussion in 'Off Topic' started by B2L, Jun 6, 2011.

  1. B2L

    B2L Android Expert
    Thread Starter
    Rank:
    None
    Points:
    233
    Posts:
    1,833
    Joined:
    Jan 17, 2011

    Jan 17, 2011
    1,833
    658
    233
    Salt Lake City, UT
    Earlier this morning i logged into my gmail account and it said there had been suspicious activity on my account, after looking into it further it's showing that an IP address from Ukraine, and also California had logged into my gmail account. I have already gone through the whole process of changing all of my passwords and fixing everything on my account.

    But the thing i was wondering is it possible to send the hackers IP addresses to Google? I want to report these hackers.
     

    Advertisement

    AndyOpie150 likes this.
  2. XplosiV

    XplosiV Master X is Watching You
    Rank:
     #61
    Points:
    413
    Posts:
    5,423
    Joined:
    Jun 10, 2010

    Jun 10, 2010
    5,423
    1,971
    413
    Male
    UK
    If its google thats told you about the suspicious activity, then the chances are they already know the suspect IP addresses, along with a lot more info that you dont.
     
    B2L likes this.
  3. Dark Jedi

    Dark Jedi Guest
    Rank:
    None
    Posts:
    0
    Joined:

    If the hackers hacked your account then I am sure they was using proxy addresses to hide their locations. Also I am sure Google already has all the ip addresses.
     
    B2L likes this.
  4. B2L

    B2L Android Expert
    Thread Starter
    Rank:
    None
    Points:
    233
    Posts:
    1,833
    Joined:
    Jan 17, 2011

    Jan 17, 2011
    1,833
    658
    233
    Salt Lake City, UT
    Alright well thanks for the info guys, i appreciate it.
     
  5. A.Nonymous

    A.Nonymous Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    7,059
    Joined:
    Jun 7, 2010

    Jun 7, 2010
    7,059
    967
    213
    Turn on 2 factor authentication. Fixes the problem right there. I could give you my password right now and you wouldn't be able to get into my Gmail account.
     
  6. cds0699

    cds0699 Android Expert
    Rank:
    None
    Points:
    163
    Posts:
    1,545
    Joined:
    May 22, 2010

    May 22, 2010
    1,545
    347
    163
    Shenandoah Jct WV
    I have a question about this. I like to experiment with flashing different ROM's and such on my phone, and as a result I need to sign into my google account on my phone (like at startup) more often than most people whenever I flash a new ROM. How does the 2 factor authentication work in that regard?
     
  7. A.Nonymous

    A.Nonymous Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    7,059
    Joined:
    Jun 7, 2010

    Jun 7, 2010
    7,059
    967
    213
    You have to either generate a new password, keep the old one on file someplace, or create an update.zip file from Titanium and flash that one or the other.
     
    cds0699 and B2L like this.
  8. B2L

    B2L Android Expert
    Thread Starter
    Rank:
    None
    Points:
    233
    Posts:
    1,833
    Joined:
    Jan 17, 2011

    Jan 17, 2011
    1,833
    658
    233
    Salt Lake City, UT

    I guess this is what i will have to do. I flash a ton of roms as well so it might be kind of a pain, but it definitely sounds worth it. Thanks.
     
  9. 330D

    330D From My Cold Dead Hands
    Rank:
    None
    Points:
    213
    Posts:
    2,863
    Joined:
    Mar 4, 2010

    Mar 4, 2010
    2,863
    779
    213
    operator
    upstate NY
    This^ at the suggestion of an AF buddy I did it last night. Once you do the 2 step authentications, it makes you realize how insecure you may have been before. The 2 step is a good thing.
     
  10. A.Nonymous

    A.Nonymous Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    7,059
    Joined:
    Jun 7, 2010

    Jun 7, 2010
    7,059
    967
    213
    That was my reaction as well. It is a bit frustrating at times to try to log on to a computer you've not logged on to before and you don't have your phone. But then that also lets me know just how secure the account really is. The old adage is "Something you have, something you know."
     
  11. prassu

    prassu Guest
    Rank:
    None
    Posts:
    0
    Joined:

    I heard about this..is it already available? is it a paid service from google?
     
  12. cds0699

    cds0699 Android Expert
    Rank:
    None
    Points:
    163
    Posts:
    1,545
    Joined:
    May 22, 2010

    May 22, 2010
    1,545
    347
    163
    Shenandoah Jct WV
    Yes its already available and it is a free service, no cost.
     
  13. jamor

    jamor Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    3,688
    Joined:
    Apr 13, 2010

    Apr 13, 2010
    3,688
    761
    213
    Planet Earth
    I signed up for the authentication/verification thing where every time you login to a new computer (or same computer if you adjust the settings) you have to wait to receive a text message with the security code. I feel a lot safer now.
     
  14. prassu

    prassu Guest
    Rank:
    None
    Posts:
    0
    Joined:

    Is it SMS?? I remember seeing in a youtube video that the second authorization code will be generated randomly in a mobile app ( not sure if its android or apple). Do they give an option of both SMS & app generated code?
     
  15. prassu

    prassu Guest
    Rank:
    None
    Posts:
    0
    Joined:

    Good that google has brought this..Now other email providers like yahoo or hotmail will have to start following this too.But I dont think they will in the near future..
     
  16. jamor

    jamor Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    3,688
    Joined:
    Apr 13, 2010

    Apr 13, 2010
    3,688
    761
    213
    Planet Earth
    Hmm I haven't seen the app generated code option but maybe there is one.

    They gave me the option of either receiving an SMS or a Voicemail which will have the authorization code to log into your gmail account.
     
  17. cds0699

    cds0699 Android Expert
    Rank:
    None
    Points:
    163
    Posts:
    1,545
    Joined:
    May 22, 2010

    May 22, 2010
    1,545
    347
    163
    Shenandoah Jct WV
    There is that option, you can search for "Google Authenticator" in the Android market.
     
    jamor likes this.
  18. A.Nonymous

    A.Nonymous Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    7,059
    Joined:
    Jun 7, 2010

    Jun 7, 2010
    7,059
    967
    213
    Google authenticator is what I use.
     
  19. jamor

    jamor Android Expert
    Rank:
    None
    Points:
    213
    Posts:
    3,688
    Joined:
    Apr 13, 2010

    Apr 13, 2010
    3,688
    761
    213
    Planet Earth
    Well I tried it and it doesn't work.

    If you go to google verification options, there isn't an option for the app - you can only select text or voicemail in my options.
     
  20. prassu

    prassu Guest
    Rank:
    None
    Posts:
    0
    Joined:

    I am getting all the options text/voice call & smartphone applications. Any idea if the google authenticator app requires internet connectivity to generate the code??

    SMS Option-> I dont want to have this as I travel and my sim might not have coverage.
    Android App -> if its a standalone app which does not require internet connectivity all the time then it would be great for me again the reason being travel. if it is a standalone app its like having a rsa token with you..
     
  21. prassu

    prassu Guest
    Rank:
    None
    Posts:
    0
    Joined:

    I have configured the 2 step authentication.I have gone for the android app and it seems the best option as it does not need phone signal or internet for generating the code. Thanks all..
     
  22. alostpacket

    alostpacket Over Macho Grande?
    Rank:
    None
    Points:
    513
    Posts:
    7,972
    Joined:
    Nov 29, 2009

    Nov 29, 2009
    7,972
    3,603
    513
    Android App Developer
    NY

    Dammit. I was using the "Something borrowed, something blue" one

    I knew something was wrong...

    :(
     
  23. AndyOpie150

    AndyOpie150 <strong> <a href="http://androidforums.com/optimus
    Rank:
    None
    Points:
    343
    Posts:
    5,625
    Joined:
    May 13, 2011

    May 13, 2011
    5,625
    1,532
    343
    Laborer (all the dirty nasty work nobody else want
    Florida
    Thanks to:B2L for bringing the gmail security to our attention. Thank you for the info on the 2 step authentication. I just set it up 5 min. ago. I also got a random password generator from IObit that I'll be using on all the password protected sites that I have. Thanks again!!
     
  24. Covart

    Covart Android Enthusiast
    Rank:
    None
    Points:
    93
    Posts:
    720
    Joined:
    Apr 2, 2011

    Apr 2, 2011
    720
    154
    93
    Male
    So out of curiousity, if I use a 14 digit alpha/numeric and special character, non-linear password; And assume I always use private browsing and clear history and cache after every session; Additionally, let's say I access from multiple OS's, multiple computers and multiple IP addresses? How secure should I feel? Or does any of that even matter?
     
  25. alostpacket

    alostpacket Over Macho Grande?
    Rank:
    None
    Points:
    513
    Posts:
    7,972
    Joined:
    Nov 29, 2009

    Nov 29, 2009
    7,972
    3,603
    513
    Android App Developer
    NY

    That's secure in the sense that your password would be hard to brute force, but you have a single point of failure in the password. So if any of those computers end up being compromized, you could have the password itself sniffed.

    That's the basic reason two-factor authentication is (generally) more secure than just passwords.
     
    Covart likes this.

Share This Page

Loading...