Problem I have been Pwned

Operating system
Windows 10 Pro
OS type
64-bit OS
List of current issues
Email Address "pwned"
Steps taken, but unsuccessful?
None

JB007

Level 14
Verified
Joined
May 19, 2016
Messages
687
OS
Windows 10
Antivirus
G Data
#1
Hello,
I'm not sure that it's the right place for this thread:unsure:
After reading this very interesting Heimdal" blog: Here Are the Biggest Cybersecurity Threats to Watch out for in 2018 , I decided to test my mail addresses on HIBP' site : Have I Been Pwned: Check if your email has been compromised in a data breach , and I discovered that one of my addresse have been "pwned".:eek:
I understand that my account was hacked but I don't know what I can do and how I can discover what is the guilty website ?
Thanks for your help.
HIBP1.PNG

HIBP2.PNG
 

TairikuOkami

Level 18
Content Creator
Verified
Joined
May 13, 2017
Messages
858
OS
Windows 10
Antivirus
Default-Deny
#2
I understand that my account was hacked but I don't know what I can do
Just change the password, not much else you can do about it, unless the webpage in question increases its security.
I would not be too concerned about it, it happens all the time and mostly behind the closed door.

https://hacked-emails.com is free.
 

Attachments

Last edited:

JB007

Level 14
Verified
Joined
May 19, 2016
Messages
687
OS
Windows 10
Antivirus
G Data
#3
Just change the password, not much else you can do about it, unless the webpage in question increases its security.
I would not be too concerned about it, it happens all the time and mostly behind the closed door.

https://hacked-emails.com is free.
Thanks @TairikuOkami :)
If my understanding is right, you mean that this hack is not very dangerous for me ?:unsure:
I found the guilty website and it seems that the hack appeared on October 2016 !
When you say that I have to change the password, you mean my mail account password or this website account ?
 
Likes: show-Zi

TairikuOkami

Level 18
Content Creator
Verified
Joined
May 13, 2017
Messages
858
OS
Windows 10
Antivirus
Default-Deny
#4
If my understanding is right, you mean that this hack is not very dangerous for me ?:unsure:
1. Most likely just emails of registered users have been leaked from the webpage.
2. Your account on the webpage has been compromised, so changing the password will do.

I did not even bother changing my password on those though, I use the same one for 99% of webpages, so it is not like I can do that. :D

When you say that I have to change the password, you mean my mail account password or this website account ?
Just the website account, it has nothing to do with your email account, unless you would see, that the webpage in question would be gmail.com
 
I

illumination

Guest
#6
Yes you have to watch for the scare tactics... It is as suggested, the website mentioned, change the password on that account, and what ever you do, do not use the same passwords for your website accounts as you do for your email, and you will be just fine. It happens so often im willing to bet anyone from this forum could run that and find at least one hit from their email.
 
Last edited by a moderator:

JB007

Level 14
Verified
Joined
May 19, 2016
Messages
687
OS
Windows 10
Antivirus
G Data
#7
Yes you have to watch for the scare tactics... It is as suggested, the website mentioned, change the password on that account, and what ever you do, do not use the same passwords for your website accounts as you do for your email, and you will be just fine. It happens so often im willing to bet anyone from this forum could run that and fine at least one hit from their email.
Thanks+++ @illumination and @TairikuOkami,
Before your answers I was a bit worried.
 

Spawn

Administrator
MalwareTips Staff
Verified
Joined
Jan 8, 2011
Messages
17,548
OS
Windows 10
Antivirus
Microsoft
#8
I understand that my account was hacked
Only if your account was accessed by an unauthorised person. A compromised database does not always mean you as an individual were targeted, however you're still vulnerable is no action is taken by yourself.
  • Sign out of all websites and apps.
  • Revoke all tokens.
  • Change your password.
  • Enable 2FA/2SV.
  • Save your Backup codes.
Was this an affected Outlook.com account?
 

JB007

Level 14
Verified
Joined
May 19, 2016
Messages
687
OS
Windows 10
Antivirus
G Data
#9
Only if your account was accessed by an unauthorised person. A compromised database does not always mean you as an individual were targeted, however you're still vulnerable is no action is taken by yourself.
  • Sign out of all websites and apps.
  • Revoke all tokens.
  • Change your password.
  • Enable 2FA/2SV.
  • Save your Backup codes.
Was this an affected Outlook.com account?
Thanks @Spawn :)
Sorry but my English is poor and I don't understand "Revoke all tokens" ?
No it is not an Outlook.com account and I'm not sure of what site it is ?
Possibly a "betting" site ?
HIBP3.PNG