Fraudulent Google credential found in the wild ? The Register We have all seen this before, by now. So I have that urge to remind people never give out information to anyone but the person how you are doing business with. If it is not the website directly, don't give the information. And please remember to use 2 step verification, I know it is a pain in the butt, but it will stop you from being hacked, I promise. If you don't know what 2 step verification is, click the link. How it works - Accounts Help It will make you more or less bullet proof. *edit, just watch the video, quick correction. If you are using application specific password, you need to use the same password on every device. For example, you will need to use the same password for the same account that works on you phone, tablet, and pc. When you change that passwords, you will need to change the password for every device you change. So keep the "one time password" around until you used it on all of your devices.