My outlook has been hacked

paul2louise

I got a few emails yesterday saying my facebook and instagram account passwords had been changed. So i reset them. Then my disney and netflix account. Then loads of returned emails to random addresses. I have rest my password 4 times in last 24 hours and i am still getting messages. I tried the haveibeenpwned.com website and it said 
Pwned in 15 data breaches  and found 1 paste to search sensitive breaches).

I am switching emails on all the things i think are important, amazon ebay, other shopping sites plus banking and social media because i think my email is so badly exposed i cant save it. 

i dont know what else to do.
please help

IvanOpinion

If you have not already done so, turn on two factor authentication where possible

paul2louise

IvanOpinion said:

If you have not already done so, turn on two factor authentication where possible

Found 4 successful attempts to access emails from USA Russia and China. 
Checked mum's email too and she had a breach this morning from Russia.

What on earth is going on. 

Is there something really bad going on with outlook . 

TheSpectator

paul2louise said:

IvanOpinion said:

If you have not already done so, turn on two factor authentication where possible

Found 4 successful attempts to access emails from USA Russia and China. 
Checked mum's email too and she had a breach this morning from Russia.

What on earth is going on. 

Is there something really bad going on with outlook . 

Do you share a device such as a PC? Possibly that has been compromised

flaneurs_lobster

What do you actually mean by "my Outlook has been hacked"?

You've mentioned that you have changed passwords, is this on your email account? If you were able to access your email then it hasn't been compromised - if a hacker had managed to gain control of your email account then the first thing they would do is change the password to something else to prevent your access.

So you've received some emails to say your Facebook/Insta/Netflix etc accounts have had their passwords changed.

Did they perhaps contain links for you to click in order to change the password to something else? Any chance you changed those passwords to the same thing?

Don't worry about that haveibeenpwned return, anyone who has had an email address for a while will have their email on one of the huge lists that have been published online, it doesn't mean that your email account is unsafe as long as it has a long/complicated password and 2FA enabled.

paul2louise said:

Found 4 successful attempts to access emails from USA Russia and China. 
Checked mum's email too and she had a breach this morning from Russia.

How do you know about these attempts to access your account and what do you mean by "successful"?

Are you looking at the logs for your Microsoft account? Looks like this?

They are just automated random probes looking for unprotected accounts, every Microsoft/Outlook account will have these, this is actually a pretty quiet day. Doesn't mean there's been unauthorised access to your account.

paul2louise

flaneurs_lobster said:

What do you actually mean by "my Outlook has been hacked"?

You've mentioned that you have changed passwords, is this on your email account? If you were able to access your email then it hasn't been compromised - if a hacker had managed to gain control of your email account then the first thing they would do is change the password to something else to prevent your access.


They did change the password and I reset it several times using the linked email account and password recovery 

So you've received some emails to say your Facebook/Insta/Netflix etc accounts have had their passwords changed.

Did they perhaps contain links for you to click in order to change the password to something else? Any chance you changed those passwords to the same thing?

No such links. I rarely use Instagram in fact not in years. I have actually deleted it now

Don't worry about that haveibeenpwned return, anyone who has had an email address for a while will have their email on one of the huge lists that have been published online, it doesn't mean that your email account is unsafe as long as it has a long/complicated password and 2FA enabled.

paul2louise said:

Found 4 successful attempts to access emails from USA Russia and China. 
Checked mum's email too and she had a breach this morning from Russia.

How do you know about these attempts to access your account and what do you mean by "successful"?

Are you looking at the logs for your Microsoft account? Looks like this?

They are just automated random probes looking for unprotected accounts, every Microsoft/Outlook account will have these, this is actually a pretty quiet day. Doesn't mean there's been unauthorised access to your account.

Yes but normally it says unsuccessful but 4 attempts were successful around the time I started getting rogue messages thro. They said successful access and password changed. Locations were USA China and Russia. 

I have looked at these lists before but never had a successful one until yesterday.

So it's definitely not what I have experienced before and I was locked out of TV accounts until I contacted them to reset them to another email address 

Eyeful

1. Scan your equipment with your security software to check for malware.
2. Use 2FA were ever possible.
3. Use a reputable Password Manager (like Bitwarden), to generate & remember different long unique PW for each site.
4. Make sure you have different Email addresses for different purposes (easy when using a PWM)
5. At least make sure that banks &  social media sites have different Email addresses.
6. Chose just one browser that will only be used just .for banking
7. Sign up to "haveibeenpwned" auto notification. 
 

paul2louise

Eyeful said:

1. Scan your equipment with your security software to check for malware.
2. Use 2FA were ever possible.
3. Use a reputable Password Manager (like Bitwarden), to generate & remember different long unique PW for each site.
4. Make sure you have different Email addresses for different purposes (easy when using a PWM)
5. At least make sure that banks &  social media sites have different Email addresses.
6. Chose just one browser that will only be used just .for banking
7. Sign up to "haveibeenpwned" auto notification. 
 

Can you use 2FA if logging into Microsoft apps like games. Son has Minecraft from this email address. I wondered if I could change email addresses for games like this as he has been locked out too while I keep resetting the password. My banking I do by phone on apps but I change definitely change the email for contact. 
I will keep an eye on logging in activity too. There was definitely something wrong this weekend as both myself and mum had been caught 

Thank you 

flaneurs_lobster

I'll let someone else who has knowledge address how to manage family access to resources under a single Outlook account, pretty sure sharing your password isn't the way to do it.

You can manage an Outlook account without a password at all, I do. Uses a number of other methods to log into your account including Windows Hello and trusted devices.

Eyeful

1.I understand, you can use two-factor authentication (2FA) for logging into Microsoft apps, including games like Minecraft. 

2, Yes, you should be able to change the Email address for Minecraft.

paul2louise

I have been trying to set up passkey with my android phone but because of all the activity it is blocking me. I am now waiting in a chat room queue no 89 wait time of 90 mins to speak to someone at microsoft