Advice Request I need advice regarding data breach

Please provide comments and solutions that are helpful to the author of this topic.

M

marhendray

Level 1
Thread author
Nov 20, 2021
33
Hello MalwareTips member.

Yesterday, I received a notification about another password breach via Microsoft Password Monitor (feature on Microsoft Edge). A couple hour after that I received multiple login prompts to sign in into my account (Outlook and Microsoft 365). I have my Outlook account passwordless. Should I stay on changing password and enabling 2FA (Microsoft Account) or purchase security key like YubiKey/Nitrokey?. Which one is safer from cybersecurity point of view?. This is because my Microsoft 365 account is very critical to my work.

11.PNG

2.jpg

1.jpg

Thank you MalwareTips member.
 

Attachments

  • MS365.jpg
    MS365.jpg
    88.9 KB · Views: 69
Razza

Razza

Level 4
Verified
Well-known
Aug 12, 2014
163
marhendray said:
Hello MalwareTips member.

Yesterday, I received a notification about another password breach via Microsoft Password Monitor (feature on Microsoft Edge). A couple hour after that I received multiple login prompts to sign in into my account (Outlook and Microsoft 365). I have my Outlook account passwordless. Should I stay on changing password and enabling 2FA (Microsoft Account) or purchase security key like YubiKey/Nitrokey?. Which one is safer from cybersecurity point of view?. This is because my Microsoft 365 account is very critical to my work.

View attachment 270949

View attachment 270950

View attachment 270951

Thank you MalwareTips member.
Click to expand...

Just to be safe you should change you're passwords and enable 2fa everwhere you can , btw the screenshots is leaking your personal email address I doubt you want everyone to know it.
 
  • Like
Reactions: Stopspying, franz, DDE_Server and 1 other person
Ink

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
Microsoft Edge (Password Monitor) is saying your associated email/password has been leaked.

For every website in that list, it's advised to change your password. By default, 2FA should be for all online accounts.

Question about those 8 domains:
  • how did you generate the passwords?

You can check when and what was leaked using https://haveibeenpwned.com/

PS: Your email address is visible in the screenshots.


As for the Microsoft Authenticator login request, only Approve requests that you have made - location, device and time.

Manage your recent account activity: See when and where you've used your account and remove any unknowns.

How to recover a hacked or compromised Microsoft account - Microsoft Support

Learn how to recover a hacked or compromised account, what to do next, and how to prevent your account from being compromised in the future.
support.microsoft.com support.microsoft.com
 
Last edited:
  • Like
Reactions: Stopspying, franz, DDE_Server and 2 others
M

marhendray

Level 1
Thread author
Nov 20, 2021
33
Ink said:
Microsoft Edge (Password Monitor) is saying your associated email/password has been leaked.

For every website in that list, it's advised to change your password. By default, 2FA should be for all online accounts.

Question about those 8 domains:
  • how did you generate the passwords?

You can check when and what was leaked using https://haveibeenpwned.com/

PS: Your email address is visible in the screenshots.


As for the Microsoft Authenticator login request, only Approve requests that you have made - location, device and time.

Manage your recent account activity: See when and where you've used your account and remove any unknowns.
Click to expand...
Question about those 8 domains:
  • how did you generate the passwords?
Answer: I generate my password using mathematical expression sometimes well-known such as x^2+y^2=z^2, a^2+b^2=c^2 or s^2+y^2=x^2 I use it across my accounts due to infinite amount of options.

For the email address, I always publish it publicly due to mathematical research purpose. Do you think that my technique (password) is flawed from cyber security point of view?
 
  • Like
Reactions: franz and DDE_Server
M

marhendray

Level 1
Thread author
Nov 20, 2021
33
Razza said:
Just to be safe you should change you're passwords and enable 2fa everwhere you can , btw the screenshots is leaking your personal email address I doubt you want everyone to know it.
Click to expand...
Thank you for your advice. For the email, I already share it to my colleague publicly (research purpose). I think this is related to multiple breaches happened lately in Indonesia but I am not sure.
 
  • Like
Reactions: franz
Ink

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
It's easier and/or safer to use a secure Password Manager to manage (ie. generate/fill/store/check) your passwords.

And if what you're saying is true, that your Microsoft account may be compromised, then any Sync'd browsing data and credentials may be at risk. Research purposes or not.
 
  • Like
Reactions: franz, DDE_Server, marhendray and 1 other person
M

marhendray

Level 1
Thread author
Nov 20, 2021
33
Ink said:
It's easier and/or safer to use a secure Password Manager to manage (ie. generate/fill/store/check) your passwords.

And if what you're saying is true, that your Microsoft account may be compromised, then any Sync'd browsing data and credentials may be at risk. Research purposes or not.
Click to expand...
Thank you. I have contacted people that knows cyber security but still no respond till now. I think I will migrate my data elsewhere based on your advice. Once again, thank you.
 
  • Like
Reactions: franz, DDE_Server and Kongo
DDE_Server

DDE_Server

Level 22
Verified
Top Poster
Well-known
Sep 5, 2017
1,168
  1. I recommend using trusted Password Manager. There are multiple options which are trusted and open source you could use local password manager like keepass or Bitwarden
  2. Enable 2FA in the email
  3. Change all the password of all accounts related to this email " it is recommended to change your password for your account each 3 months "
  4. use password generator "in the above solutions" to generate complex passwords with character not less than 16 with special characters / Number / letters included"
 
  • Like
Reactions: Stopspying, Back3, mkoundo and 2 others
mkoundo

mkoundo

Level 8
Verified
Well-known
Jul 21, 2017
358
Hi,

In addition to the great advice given by others, I'd add:
a) you may want to use a 2fa authenticator that generates a numerical code instead of using an authenticator that asks you to approve/deny a login request. The advantage of this approach is that you wont be notified every time someone tries to get into your account and removes the possibility that you may accidentally approve the request.
b) yes, a yubikey is considered more secure than using a 2fa app. If you consider your security that critical, I would go for a yubikey. If you decide to go down this route it's worth buying two or more yubikeys from the start so that during setup you can create backup yubikeys which you can keep safe, perhaps at different locations, to ensure you don't get locked out, should you lose/break your primary yubikey.

(y)
 
  • Like
Reactions: Stopspying, plat, Back3 and 3 others

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
    • Wow
Security News Shopping platform PandaBuy data leak impacts 1.3 million users
Replies
0
Views
1,417
Security News
Gandalf_The_Grey
Gandalf_The_Grey
I
    • Like
Security News Microsoft explains how Russian hackers spied on its executives
Replies
1
Views
1,033
Security News
Vitali Ortzi
Vitali Ortzi
Gandalf_The_Grey
    • +Reputation
    • Like
Kodi discloses data breach after forum database for sale online
Replies
0
Views
1,001
News Archive
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top