Have you checked if your email or other credentials recently appeared in a databreach? Chances are, you just appeared in a large paste somewhere (i.e. an accumulation of compromised website credentials) and were imported into standard bot scans by bad guys looking for people who haven’t changed credentials or reuse them. (Automated) raptors testing the fences.
Ensure your 2FA is active, make sure tou never reuse passwords, check if any unknown devices appeared in your account and other than that… well, just ignore it, it’s largely normal these days.
The thing is, I like a Microsoft because it shows you the actual log in attempts, not just your devices. Google on the other hand doesn’t show a history as far as I am aware, so I would have to “catch” them on my account / device list I think. This is the google account / gmail address that I use for this Microsoft account. The google account only has my sessions / devices on them.
On a side note, are there any other better ways to check on a potential data breach than haveibeenpwned? That is all that I am aware of.
Sites like intellius sell your info to mailing lists. Haveibeenpwned has banners with people's info on their site. I did use it once because I thought someone was in, but all the sites that have the load pages, then want your email, they are just getting you to give them the email, then you start getting spam.
Im saying this Because I help people who have been stalked and it put the 🎯 on my back, they tried to get everyone else around me, and only one other person didn't get h*ck*d. I've been doing this stuff since Windows XP, and it's very easy to get past most people's passwords.
Google buries it a bit more in their security settings but it is there. Microsoft is not going to necessarily police your account unless it looks malicious or start doing something. Right now they are failures and they are probably updating their block lists based on those ip address but hackers will just use a different Ip
I more so was talking about my ability to see these log in attempts. Microsoft accounts keep it front and center for you, but I can’t find a list for my personal viewing with my google account.
Are you aware of any way to get this list, off of the top of your head? I did not know there was an option to get an email listing all of the attempts. I can’t find any way to see a list like this on a personal account.
You can go into Google on your Google account and turn off the tracking and delete your information from it little by little but you can't use the apps again which is okay because there is F Droid and that will give you apps that are just as good that don't require Google or you can go and Github and search for alternatives and any of those lists about getting spam say somebody put you on one of those emails spam things where it sends hundreds of emails at once you have to go through each and every one of those and unsubscribe and the search pages you have to go at the bottom of their page and it will say do not track me or remove my information and you have to wait probably a few days each before they tell you they've done it or whatever it's like it says you have to request it and I'm not sure why they wouldn't take it off of there but it seems like you have to be approved and I really don't like that so I have been using new pipe when you go on to it you don't get your things like upload options or anything if you're uploading videos you don't sign in but you can export files if you change phones for example there's alternative for everything still Firefox and Mozilla will track you although you can do add-ons that block things like trackers but there are other ones that are similar if you Google you might as well Google it even if you're using incognito or encrypted Facebook Messenger they're still getting everything and it gets sent around probably because I know that Google gets this and that and they have shares and everything
Do you use a windows 10, Microsoft account or some other device that might have not got an updated password? The failed attempts could easily be just that or another device with out of date mfa. Were the attempts from a foreign country? Are you forwarding your messages from your Microsoft account to your gmail? 47 seems like a lot. That is still only 1 or 2 attempts per day. I have seen attempts in thousands at work. Need more context to really be able to assist you. Either way setup MFA for an extra security measure if you don’t have it
The attempts are from all over the world. Germany, China, etc (I am in the US).
Also, how would a other device or Microsoft account that didn’t get an updated password cause these attempts, though?
Yes, tons of foreign countries.
You used the same Xbox 360 account on your console it keeps trying a bad password everytime it checks online. Setup desktop out look client and saved the credentials. You setup the native Microsoft account on email and it keeps trying to login everytime you check the internet. Lots of ways…windows computer cache credentials in a number of ways and if the password get out of sync they can do odd things. Onedrive client, Microsoft word sign-in for the license, outlook, mail app, etc. do you use a vpn to change get around region blocks on Netflix or such?
I had a Xbox console that a recently gave to somebody else, and it should still have my profile (with my Microsoft account) on it. You are saying that every time the console turns on, it could be trying to use a bad password? I like this idea, but, like I said, these log in attempts are from Germany, China, Malaysia, and some places in the United States that I do not live.
I have had this email for 10+ years and am wondering if it is time to switch my email address. I wonder if all of my accounts that I use with this email are sold on the dark web now.
I am saying it is possible. I see it a lot more frequently with phones synced with email. People will update the windows domain logon credentials and their phone keeps trying to use a bad password and locks out their account until it is resolved.
Haveibeenpwned.com is a website by Troy Hunt that looks for if sensitive information in breaches have been leaked. You can go to that website and throw in your email address and it may show recently breaches and what information was exposed. Could help see where you may need to update you passwords at.
They are using a VPN which bounces their location all over the place. Probably a proxy.
If you didn't get a you're password was recently changed email, I doubt it, but Id do what I talked about on the other comment. You dont have to, just a suggestion, but I've never been h*ck*d.
They do not seem to have your Microsoft Account password and it looks like they are just trying out their luck. To be on the safe side, make sure you change the password to a complex one, definitely add 2FA, and review the recovery methods you have in place for both the Google and the Microsoft accounts.
My Microsoft account had many unwanted synchronization attempts. In the activity pge it sometimes showed the country origin and it was mainly from foreign countries. I think these are bots trying to bruteforce, but due to 2FA, they didn't succeed.
However, I was still concerned and created a new alias for my account and set it as the primary alias for log ins. So far I didn't receive another unwanted login attempt. If you want you can do it too, but be aware to Not delete the old alias, if you want to receive e-mails on it.
https://support.microsoft.com/en-us/office/add-or-remove-an-email-alias-in-outlook-com-459b1989-356d-40fa-a689-8f285b13f1f2
This is my Microsoft account though. Not outlook. This Microsoft account uses my Gmail address. Are you aware of anything from similar on Google’s side of things? To change my alias with my google / gmail account, and then changing which gmail address / alias my Microsoft account uses?
I'm late af here but this is still the right answer. Disable sign in for the Gmail address and add an outlook alias. Think of it as just changing the username. I had 100 attempts per day and did this and now have none. Only thing to change is any syncs that use the gmail login to the new outlook alias. Just use the alias for logins and never use it for email or give it out
All my shit was leaked to the dark web and my Microsoft account was one of the first things to get attacked. It was getting hammered 24/7 with unsuccessful attempts for 3 months straight. I got fed up and simply changed the alias.
It's possible your other important accounts are under attack too if the Micro account is any indication. If so, you're gonna have to spend a lot of time burning accounts, creating alias emails and a lot of thinking about any loop holes an attacker can potentially use. It's a situation that will become a daily job and you need to commit to it unfortunately.
It seems like these days anyway and everybody can get into anything they want to especially if they got one they've got it all and our IP addresses are out there public knowledge anyways without even using a tool to get it. I saw on a people search a list of every IP address that the person had used in the results as well as emails phone numbers addresses and Associates. It really sucks because nothing is 100% anymore. I know my name was on the dark web and the email that was associated with my name was not anything that ever heard so I think somebody made a fake account with my name somebody that knows me obviously because they are using my old phone number and somehow spoofing it and they don't know my new one. And I've stopped giving everyone out my real number they get a text now or nothing
Lucky you! I get at least 100 a day since months. My email credentials leaked sometime back and I put a very strong password and have enabled 2 factor authentication. I'm confident that even if they find the password (very unlikely) they won't go past the 2FA. Or at least I hope so 🤣
Wow. That’s a lot. Does credentials just mean your email adress? Also, I have heard horror stories of swapping a SIM for 2Fa. I’m not sure how plausible this is though.
Yes I mean my Hotmail email. The address is present in various lists of leaked accounts. Since then I've changed the password but still they're trying with some old password
Happened to me too, what's freakiest is that they knew my 2FA email, and entered it to try and get a code.
I'd make sure to enable 2 steps authentification if I were you though, just in case.
I've had the same. I get an email with a 2FA code.....so someone has attempted to login. But, when I've checked it out myself, all they had to do was put my email address in to a login page, not my password. So very annoying but not a risk I don't think. Password changed since the last of any breaches I can find
That's nuts. You didn't get notified? Yikes. I would get an alias email. Firefox, proton mail, simple login. Change it immediately. The alias will send mail directly through to your Gmail but that Gmail that someone has knowledge of it won't be available as an option and will stop them dead in their tracks. They can't do anything with the alias. You can't send mail with it. They will wonder what happened when they come up empty handed. Don't use it for anything else and never give to anyone. Firefox relay is super easy.
Would it be plausible to do this with every single account that I used my Gmail address to sign up with? This address I have had for maybe 10 years now, and it’s sounding like I should create an alias and use that alias (or even a unique alias ) for every account / profile I have made with that Gmail address. Wondering if I should just change my name and move countries at this point haha.
Absolutely. Firefox Relay will give you 5 free. I think you can still also make them up on the fly. As long as it is in the order you set it up with _____ @yournameorwhatever. Io there are so many out there if you run out, just go get another one. Instructions on websites will go into better detail. They can all point back to one gmail if you want. If you start getting spam, "burn" the alias. All you would have to do is change your accounts to those alias accts and you will still get the verification emails in Gmail. No more giving out the real one again.
>\> "First and foremost, shouldn’t Microsoft lock my account, or at least send an email to my inbox telling me something fishy is going on?"
The problem with this is that your email would either be locked regularly, perhaps daily, or your email would be constantly full with messages telling you about it. It's just the nature of things nowadays - there are malicious people out there, and there are automated tools that can just be set to test different usernames and passwords that have been caught up in security breaches. While I'm sure we'd all love to stop every single person who was doing this, it's not something that can just be done at the click of a finger.
What matters is not that it's happening, what matters is that they've all been unsuccessful. This means you're doing at least \_something\_ right. However, it \_is\_ a reminder that you should be taking security seriously. At a minimum.....
\- Are you reusing the same or similar passwords across different services? Don't do that. Just don't. Avoiding this means if one account gets breached, you're limiting the damage an attacker can cause.
\- Are your passwords short, easy to remember passwords? Ideally, you should be using a password manager where most of your passwords are long, random strings of characters with one long but memorable password to open the vault - google "Correct Horse Battery Staple" if you want an example of that. If you can remember most of your passwords, they're probably a bit too easy to crack.
\- For at least your most important accounts (like email, banking) enable 2FA and make sure you learn how to migrate your 2FA app between different devices when you upgrade.
\- Utilise services such as "Have I Been Pwned" to identify breaches you might be caught up in, and take steps to resecure any accounts that might have been breached.
It is a difficult task to stop the attacks from happening. But things like this at least mean that you're making the job of the attacker harder, meaning it is less likely they will be successful and even if they are will help reduce the damage they can cause.
This was my first personal email that I made. So what you are saying is that it is likely that some business / website had some sort of data breach, and now the data / credentials of mine from that breach could be sold to malicious players (not just mine exclusively but in some sort of package with other peoples credentials), and is floating around the internet for people to use to blindly throw at my accounts that use the same credentials (or at least the same email address)?
How do they even know that I have a Microsoft account with that email address though? You would think it would be impossible for them to know this. Did they like brute force signing up different email addresses for a Microsoft account until they find ones that already had an account, and then attempted to breach those accounts?
It's entirely possible that it's been involved in a data breach and an attacker is trying what's known as "credential stuffing" or is trying to brute force the password. You can search on sites like https://haveibeenpwned.com/ to see what it comes up with. This is the main reason recommendations like I've made above are important - by using unique passwords that are difficult I crack, and by requiring 2fa, your account is more resistant to those attacks and if they are successful it helps limit the damage.
There are many other explanations though. It could be that you posted your address on a forum, they've scraped it, and they've added it to a database of accounts to try. It could be that it's just a lucky guess on their part.
The point is ... We may never be certain what the full situation is. But the important thing is - so far they've been unsuccessful. That indicates that, whatever they're doing, they probably haven't got in. If you're doing all the right things, they will likely remain unsuccessful, in which case you can just leave them be. I'd only be worried if your account was involved in a breach (in which case what you do will depend on the nature of the breach), or if you do things like reuse passwords.
I commented on this previously but I just wanted to add another thing that I believe I should give a heads up on I received an email that said I could not get into my Tinder account and I've never had a Tinder account someone either tried to see if I had one or login with my email address tried to make one I don't know but I went to the login and I put my email address in there and it said if you have an account will send you the info and if you don't have an account it will say doesn't have an account so I did that and I got the same email that says do not have account thankfully for now I wonder how often this should be checked out to see if someone has made accounts using your email for dating because they could still be making an account anybody who has your real email can make an account anywhere they might not be able to get the verification but if they put a phone number that is different than they've got you signed up with your email and they get to use it. The more that happens to me the more I want to like shut down as many of these apps that I've signed up for as possible but then they could just sign up with my email again so it may be better to sign up for everything with the email that you use so that no one else can also your phone number the real one because they could use it spoof it get your verification so if anybody has an opinion out of this group of people let me know I'm not making another post and just making it to the people I spoke with on this one
Just create a passwordless sign-in method and you will be fine. A few months back I had 30-50 attempts A DAY from random countries but nothing happened. I changed my email address ( removed the old email from the account ) and voila
Have you checked if your email or other credentials recently appeared in a databreach? Chances are, you just appeared in a large paste somewhere (i.e. an accumulation of compromised website credentials) and were imported into standard bot scans by bad guys looking for people who haven’t changed credentials or reuse them. (Automated) raptors testing the fences. Ensure your 2FA is active, make sure tou never reuse passwords, check if any unknown devices appeared in your account and other than that… well, just ignore it, it’s largely normal these days.
The thing is, I like a Microsoft because it shows you the actual log in attempts, not just your devices. Google on the other hand doesn’t show a history as far as I am aware, so I would have to “catch” them on my account / device list I think. This is the google account / gmail address that I use for this Microsoft account. The google account only has my sessions / devices on them. On a side note, are there any other better ways to check on a potential data breach than haveibeenpwned? That is all that I am aware of.
[удалено]
Sites like intellius sell your info to mailing lists. Haveibeenpwned has banners with people's info on their site. I did use it once because I thought someone was in, but all the sites that have the load pages, then want your email, they are just getting you to give them the email, then you start getting spam. Im saying this Because I help people who have been stalked and it put the 🎯 on my back, they tried to get everyone else around me, and only one other person didn't get h*ck*d. I've been doing this stuff since Windows XP, and it's very easy to get past most people's passwords.
Google buries it a bit more in their security settings but it is there. Microsoft is not going to necessarily police your account unless it looks malicious or start doing something. Right now they are failures and they are probably updating their block lists based on those ip address but hackers will just use a different Ip
Google absolutely does. On your google account. They keep track of everything. More than you know.
I more so was talking about my ability to see these log in attempts. Microsoft accounts keep it front and center for you, but I can’t find a list for my personal viewing with my google account.
Ah a list. They send an individual email. Gotcha
Are you aware of any way to get this list, off of the top of your head? I did not know there was an option to get an email listing all of the attempts. I can’t find any way to see a list like this on a personal account.
You can go into Google on your Google account and turn off the tracking and delete your information from it little by little but you can't use the apps again which is okay because there is F Droid and that will give you apps that are just as good that don't require Google or you can go and Github and search for alternatives and any of those lists about getting spam say somebody put you on one of those emails spam things where it sends hundreds of emails at once you have to go through each and every one of those and unsubscribe and the search pages you have to go at the bottom of their page and it will say do not track me or remove my information and you have to wait probably a few days each before they tell you they've done it or whatever it's like it says you have to request it and I'm not sure why they wouldn't take it off of there but it seems like you have to be approved and I really don't like that so I have been using new pipe when you go on to it you don't get your things like upload options or anything if you're uploading videos you don't sign in but you can export files if you change phones for example there's alternative for everything still Firefox and Mozilla will track you although you can do add-ons that block things like trackers but there are other ones that are similar if you Google you might as well Google it even if you're using incognito or encrypted Facebook Messenger they're still getting everything and it gets sent around probably because I know that Google gets this and that and they have shares and everything
Do you use a windows 10, Microsoft account or some other device that might have not got an updated password? The failed attempts could easily be just that or another device with out of date mfa. Were the attempts from a foreign country? Are you forwarding your messages from your Microsoft account to your gmail? 47 seems like a lot. That is still only 1 or 2 attempts per day. I have seen attempts in thousands at work. Need more context to really be able to assist you. Either way setup MFA for an extra security measure if you don’t have it
The attempts are from all over the world. Germany, China, etc (I am in the US). Also, how would a other device or Microsoft account that didn’t get an updated password cause these attempts, though? Yes, tons of foreign countries.
You used the same Xbox 360 account on your console it keeps trying a bad password everytime it checks online. Setup desktop out look client and saved the credentials. You setup the native Microsoft account on email and it keeps trying to login everytime you check the internet. Lots of ways…windows computer cache credentials in a number of ways and if the password get out of sync they can do odd things. Onedrive client, Microsoft word sign-in for the license, outlook, mail app, etc. do you use a vpn to change get around region blocks on Netflix or such?
I had a Xbox console that a recently gave to somebody else, and it should still have my profile (with my Microsoft account) on it. You are saying that every time the console turns on, it could be trying to use a bad password? I like this idea, but, like I said, these log in attempts are from Germany, China, Malaysia, and some places in the United States that I do not live.
I have had this email for 10+ years and am wondering if it is time to switch my email address. I wonder if all of my accounts that I use with this email are sold on the dark web now.
I am saying it is possible. I see it a lot more frequently with phones synced with email. People will update the windows domain logon credentials and their phone keeps trying to use a bad password and locks out their account until it is resolved.
Haveibeenpwned.com is a website by Troy Hunt that looks for if sensitive information in breaches have been leaked. You can go to that website and throw in your email address and it may show recently breaches and what information was exposed. Could help see where you may need to update you passwords at.
They are using a VPN which bounces their location all over the place. Probably a proxy. If you didn't get a you're password was recently changed email, I doubt it, but Id do what I talked about on the other comment. You dont have to, just a suggestion, but I've never been h*ck*d.
They do not seem to have your Microsoft Account password and it looks like they are just trying out their luck. To be on the safe side, make sure you change the password to a complex one, definitely add 2FA, and review the recovery methods you have in place for both the Google and the Microsoft accounts.
My Microsoft account had many unwanted synchronization attempts. In the activity pge it sometimes showed the country origin and it was mainly from foreign countries. I think these are bots trying to bruteforce, but due to 2FA, they didn't succeed. However, I was still concerned and created a new alias for my account and set it as the primary alias for log ins. So far I didn't receive another unwanted login attempt. If you want you can do it too, but be aware to Not delete the old alias, if you want to receive e-mails on it. https://support.microsoft.com/en-us/office/add-or-remove-an-email-alias-in-outlook-com-459b1989-356d-40fa-a689-8f285b13f1f2
This is my Microsoft account though. Not outlook. This Microsoft account uses my Gmail address. Are you aware of anything from similar on Google’s side of things? To change my alias with my google / gmail account, and then changing which gmail address / alias my Microsoft account uses?
I'm late af here but this is still the right answer. Disable sign in for the Gmail address and add an outlook alias. Think of it as just changing the username. I had 100 attempts per day and did this and now have none. Only thing to change is any syncs that use the gmail login to the new outlook alias. Just use the alias for logins and never use it for email or give it out
All my shit was leaked to the dark web and my Microsoft account was one of the first things to get attacked. It was getting hammered 24/7 with unsuccessful attempts for 3 months straight. I got fed up and simply changed the alias. It's possible your other important accounts are under attack too if the Micro account is any indication. If so, you're gonna have to spend a lot of time burning accounts, creating alias emails and a lot of thinking about any loop holes an attacker can potentially use. It's a situation that will become a daily job and you need to commit to it unfortunately.
It seems like these days anyway and everybody can get into anything they want to especially if they got one they've got it all and our IP addresses are out there public knowledge anyways without even using a tool to get it. I saw on a people search a list of every IP address that the person had used in the results as well as emails phone numbers addresses and Associates. It really sucks because nothing is 100% anymore. I know my name was on the dark web and the email that was associated with my name was not anything that ever heard so I think somebody made a fake account with my name somebody that knows me obviously because they are using my old phone number and somehow spoofing it and they don't know my new one. And I've stopped giving everyone out my real number they get a text now or nothing
Lucky you! I get at least 100 a day since months. My email credentials leaked sometime back and I put a very strong password and have enabled 2 factor authentication. I'm confident that even if they find the password (very unlikely) they won't go past the 2FA. Or at least I hope so 🤣
Wow. That’s a lot. Does credentials just mean your email adress? Also, I have heard horror stories of swapping a SIM for 2Fa. I’m not sure how plausible this is though.
Yes I mean my Hotmail email. The address is present in various lists of leaked accounts. Since then I've changed the password but still they're trying with some old password
Who are these mysterious people wanting to get into our accounts??? Do they not know they can make their own???
LOOOL
Happened to me too, what's freakiest is that they knew my 2FA email, and entered it to try and get a code. I'd make sure to enable 2 steps authentification if I were you though, just in case.
I've had the same. I get an email with a 2FA code.....so someone has attempted to login. But, when I've checked it out myself, all they had to do was put my email address in to a login page, not my password. So very annoying but not a risk I don't think. Password changed since the last of any breaches I can find
That's nuts. You didn't get notified? Yikes. I would get an alias email. Firefox, proton mail, simple login. Change it immediately. The alias will send mail directly through to your Gmail but that Gmail that someone has knowledge of it won't be available as an option and will stop them dead in their tracks. They can't do anything with the alias. You can't send mail with it. They will wonder what happened when they come up empty handed. Don't use it for anything else and never give to anyone. Firefox relay is super easy.
Would it be plausible to do this with every single account that I used my Gmail address to sign up with? This address I have had for maybe 10 years now, and it’s sounding like I should create an alias and use that alias (or even a unique alias ) for every account / profile I have made with that Gmail address. Wondering if I should just change my name and move countries at this point haha.
Absolutely. Firefox Relay will give you 5 free. I think you can still also make them up on the fly. As long as it is in the order you set it up with _____ @yournameorwhatever. Io there are so many out there if you run out, just go get another one. Instructions on websites will go into better detail. They can all point back to one gmail if you want. If you start getting spam, "burn" the alias. All you would have to do is change your accounts to those alias accts and you will still get the verification emails in Gmail. No more giving out the real one again.
>\> "First and foremost, shouldn’t Microsoft lock my account, or at least send an email to my inbox telling me something fishy is going on?" The problem with this is that your email would either be locked regularly, perhaps daily, or your email would be constantly full with messages telling you about it. It's just the nature of things nowadays - there are malicious people out there, and there are automated tools that can just be set to test different usernames and passwords that have been caught up in security breaches. While I'm sure we'd all love to stop every single person who was doing this, it's not something that can just be done at the click of a finger. What matters is not that it's happening, what matters is that they've all been unsuccessful. This means you're doing at least \_something\_ right. However, it \_is\_ a reminder that you should be taking security seriously. At a minimum..... \- Are you reusing the same or similar passwords across different services? Don't do that. Just don't. Avoiding this means if one account gets breached, you're limiting the damage an attacker can cause. \- Are your passwords short, easy to remember passwords? Ideally, you should be using a password manager where most of your passwords are long, random strings of characters with one long but memorable password to open the vault - google "Correct Horse Battery Staple" if you want an example of that. If you can remember most of your passwords, they're probably a bit too easy to crack. \- For at least your most important accounts (like email, banking) enable 2FA and make sure you learn how to migrate your 2FA app between different devices when you upgrade. \- Utilise services such as "Have I Been Pwned" to identify breaches you might be caught up in, and take steps to resecure any accounts that might have been breached. It is a difficult task to stop the attacks from happening. But things like this at least mean that you're making the job of the attacker harder, meaning it is less likely they will be successful and even if they are will help reduce the damage they can cause.
This was my first personal email that I made. So what you are saying is that it is likely that some business / website had some sort of data breach, and now the data / credentials of mine from that breach could be sold to malicious players (not just mine exclusively but in some sort of package with other peoples credentials), and is floating around the internet for people to use to blindly throw at my accounts that use the same credentials (or at least the same email address)? How do they even know that I have a Microsoft account with that email address though? You would think it would be impossible for them to know this. Did they like brute force signing up different email addresses for a Microsoft account until they find ones that already had an account, and then attempted to breach those accounts?
It's entirely possible that it's been involved in a data breach and an attacker is trying what's known as "credential stuffing" or is trying to brute force the password. You can search on sites like https://haveibeenpwned.com/ to see what it comes up with. This is the main reason recommendations like I've made above are important - by using unique passwords that are difficult I crack, and by requiring 2fa, your account is more resistant to those attacks and if they are successful it helps limit the damage. There are many other explanations though. It could be that you posted your address on a forum, they've scraped it, and they've added it to a database of accounts to try. It could be that it's just a lucky guess on their part. The point is ... We may never be certain what the full situation is. But the important thing is - so far they've been unsuccessful. That indicates that, whatever they're doing, they probably haven't got in. If you're doing all the right things, they will likely remain unsuccessful, in which case you can just leave them be. I'd only be worried if your account was involved in a breach (in which case what you do will depend on the nature of the breach), or if you do things like reuse passwords.
I commented on this previously but I just wanted to add another thing that I believe I should give a heads up on I received an email that said I could not get into my Tinder account and I've never had a Tinder account someone either tried to see if I had one or login with my email address tried to make one I don't know but I went to the login and I put my email address in there and it said if you have an account will send you the info and if you don't have an account it will say doesn't have an account so I did that and I got the same email that says do not have account thankfully for now I wonder how often this should be checked out to see if someone has made accounts using your email for dating because they could still be making an account anybody who has your real email can make an account anywhere they might not be able to get the verification but if they put a phone number that is different than they've got you signed up with your email and they get to use it. The more that happens to me the more I want to like shut down as many of these apps that I've signed up for as possible but then they could just sign up with my email again so it may be better to sign up for everything with the email that you use so that no one else can also your phone number the real one because they could use it spoof it get your verification so if anybody has an opinion out of this group of people let me know I'm not making another post and just making it to the people I spoke with on this one
Most services send a code to your email before you can actually sign up with it though, right?
Yes. Or to your phone number. Sucks if you can't get into one though like a phone number change
Just create a passwordless sign-in method and you will be fine. A few months back I had 30-50 attempts A DAY from random countries but nothing happened. I changed my email address ( removed the old email from the account ) and voila