My Gmail account was hacked

I logged into my email today and it told me it was temporarily disabled. I got it enabled again via text messege. Then it made me reset the password to something else. All of my contacts had been emailed spam via my account with various links to drugs online types of sites. What else should I do? Is there a way to find out if sensitive emails were read/recorded? Anyone else had this happen?

Go to "Last account activity: ... Details" and click on 'details', it will show all the IP addresses, browsers, location and date.

Israel... Mobile access. Now im wondering how they got my password.

Mossad maybe?

lol

  On 5/28/2010 at 10:06 PM, scones to die for said:

Mossad maybe?

LOL

maybe it's Frank.

THIS MAN SHIT IN MY GMAIL

online drug sites as in "enlarge ur penis today!!!1!!1!", "legal herbal highs" or "discreet packaging"

yeah like viagra by mail types of things.

what browser do you use? Was your password a stupid one i.e. 'boobs23'?

Different ways of getting a gmail password I can think of:

-Lan hacking

-trojan/virus with keylogger

-bruteforcing a weak password

-you registered to a website/forum with your gmail password. Someone hacked into the database or the site's owner was dishonest.

  On 5/29/2010 at 12:20 PM, Bubba69 said:

yeah like viagra by mail types of things.

the Jews are trying to expose America's erectile dysfunction to the world using gmail.

Sure you didn't do it while you were drunk?

  On 5/29/2010 at 12:38 PM, Babar said:

Different ways of getting a gmail password I can think of:

-Lan hacking

-trojan/virus with keylogger

-bruteforcing a weak password

-you registered to a website/forum with your gmail password. Someone hacked into the database or the site's owner was dishonest.

Yep, and the simplest one - phishing.

that's exactly what i'm thinking about : dns spoofing. Bubba thought he was login to gmail but it was just a façade. I wonder how it's possible except by exploiting crappy Internet Explorer weaknesses. Bubba, are you using Internet Explorer ?

About your question concerning stolen data. Let's assume that the hacker didn't delete any mail. Type your password in the search field. Maybe it will come up with post subscription email you've archived. This way you'll see what kind of sensitive informations might have been stolen.

i've had two occasions now where emails were sent from my gmail account to a group of 6 or so of my contacts. i checked the recent activity on my account the second time it happened and saw that someone from greece had logged in. i changed my password but have been keeping an eye on the activity and tonight i see that someone logged into my account from the bronx, ny.

is gmail especially susceptible to hacking like this? should i close this account and get a different one? should i avoid gmail?

code red!

if you're still getting hacked into after changing passwords you better do a virus/trojan sweep

  On 5/28/2010 at 9:36 PM, Bubba69 said:

I logged into my email today and it told me it was temporarily disabled. I got it enabled again via text messege. Then it made me reset the password to something else. All of my contacts had been emailed spam via my account with various links to drugs online types of sites. What else should I do? Is there a way to find out if sensitive emails were read/recorded? Anyone else had this happen?

this happened to me too!

IP address was in Serbia.

what bothers me most is i don't know how it happened. have been patching goddamn every piece of software ever and setting paranoid firewall rules all week. fucking sucks !

i am seriously wondering if gmail was hacked. my password was not stupid

it also happened to a friend of mine a couple weeks ago.

if you're using gmail and you haven't enabled 2-factor authentication, do it now.

http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

  On 5/19/2011 at 10:11 AM, chaosmachine said:

if you're using gmail and you haven't enabled 2-factor authentication, do it now.

 

http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

text's not free on my phone. not to mention i don't always have it with me..... not a good solution.

i'd rather have a secureid fob.

  On 5/19/2011 at 10:13 AM, hahathhat said:

  On 5/19/2011 at 10:11 AM, chaosmachine said:

if you're using gmail and you haven't enabled 2-factor authentication, do it now.

 

http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

text's on free on my phone. not to mention i don't always have it with me..... not a good solution.

 

i'd rather have a secureid fob.

they have an app for android/iphone/blackberry, doesn't require sms.

after you auth, it sets a 30-day cookie, so you only need to do it once a month, or if you use someone else's computer to log in (which you should never do)...

also, they give you one-time-use codes to write down for emergencies.

  On 5/19/2011 at 10:14 AM, chaosmachine said:

  On 5/19/2011 at 10:13 AM, hahathhat said:

  On 5/19/2011 at 10:11 AM, chaosmachine said:

if you're using gmail and you haven't enabled 2-factor authentication, do it now.

 

http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

text's on free on my phone. not to mention i don't always have it with me..... not a good solution.

 

i'd rather have a secureid fob.

 

they have an app for android/iphone/blackberry, doesn't require sms.

 

after you auth, it sets a 30-day cookie, so you only need to do it once a month, or if you use someone else's computer to log in (which you should never do)...

 

also, they give you one-time-use codes to write down for emergencies.

thats totally awesome. just created this for my account. thanks a ton

  On 5/19/2011 at 10:14 AM, chaosmachine said:

  On 5/19/2011 at 10:13 AM, hahathhat said:

  On 5/19/2011 at 10:11 AM, chaosmachine said:

if you're using gmail and you haven't enabled 2-factor authentication, do it now.

 

http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html

text's on free on my phone. not to mention i don't always have it with me..... not a good solution.

 

i'd rather have a secureid fob.

 

they have an app for android/iphone/blackberry, doesn't require sms.

 

after you auth, it sets a 30-day cookie, so you only need to do it once a month, or if you use someone else's computer to log in (which you should never do)...

 

also, they give you one-time-use codes to write down for emergencies.

i do not have android, iphone, or blackberry !!

  On 5/19/2011 at 10:41 AM, hahathhat said:

i do not have android, iphone, or blackberry !!

bummer. android is fun.

and expensive!!

my phone costs $35/mo or so. i don't use it much. most of my work is over email and skype...... i value my cable internet much more highly.