I received an email that appears that someone "bad" tried to log into my account, since I know I didn't. However, the email is not at all clear to a newbie, nor is one of the remedies. Here's the message, and my questions tha follow:
An attempt to login to your blockchain.info wallet was made from an unknown browser. Please confirm the following details are correct:
Time: 2013-07-32 13:46:26
IP Address: 192.? ? ?.? ? ?.42 (United States)
User Agent: Mozilla/5.0
If the above details are correct, please use the following login link:
htt ps://blockchain.info/wallet/ea;ld;alsdkjf;ajdkjdkfja
If this login attempt was made by you this email can be safely ignored however you may wish to change your wallet alias.
Your wallet identifier is: sa;kajf;leiieafae
PART 1 >> --- Obviously, since it wasn't me, I didn't click on it. But,
"If this login attempt WAS made by you this email can be safely ignored ... "
Since this was NOT me, I should NOT ignore it. And... do what??
"... however you may wish to change your
wallet alias."
It seems to indicate that even if it was me, that I should consider changing my "alias". Since it was not me, I'd have to assume it is even more important to do so.
So, I went to the site and searched all over, including all the FAQs and help, but found zero reference to any ability to change the alias, or advice on what the email advisory was really suggesting that I do. I did learn that "alias" is identical to "wallet identifier" and identical to "login name" to the wallet site, which was not clear.
SO, HOW can I do this? Create a new account?
PART 2 >> --- Later, I got another email generated directly by my browser.
SO, WHY would it suggest I should change my alias? Did I trigger a risk itself, and or an indication there was now a risk?
------ Hopefully someone more senior can post this to the BlockChain.info forum so they could improve their messages.
(Technology Rant:)
In general, newbies need an easy way to convey what confuses them: What the missing pieces of context are they require to take action? Those that create the UI's and help docs already have that missing context, and so can't detect or provide what context is missing. For instance, on any given website, it is seldom clear what to use for the "login name". Sometimes it needs an "email address", the first part of an email address, (think Google Apps), sometimes a "casual username", and others, a "dedicated username" that differs from the public "handle" or "username". Obviously jargon is often required, but the definitions must be easily visible with wither flyovers and/or links, along with ALL they synonyms.