Failed login attempt to Blockchain.info account from another country

[calkob]

I received an email today that said someone tried to login to my blockchain.info account from the ukraine, i live in the UK.  What sort of things should i be thinking about regarding security of this account?  how would they know my personal identifier?  could this email actually be a phising email? it looks like it is from Blockchain.info or is this just someone just guessing random accounts and trying to brute force?

many thanks 

[Mitchell]

Two things you should do right now:
- Change your password to be sure that it's safe.
- Setup 2FA if you haven't already

Or, you know, ditch Blockchain.info all together.

[--Encrypted--]

I received an email today that said someone tried to login to my blockchain.info account from the ukraine, i live in the UK.  What sort of things should i be thinking about regarding security of this account?  how would they know my personal identifier?  could this email actually be a phising email? it looks like it is from Blockchain.info or is this just someone just guessing random accounts and trying to brute force?

many thanks  

afaik you can't even change your password on blockchain.info.

quote from blockchain.info account settings:

Main Password

For security reasons in order to change your main wallet password please create a new wallet and transfer any funds to the new account.

try contacting their support and ask.
and avoid clicking any links from that email you got. most likely a phishing email.

[mexxer-2]

Two things you should do right now:
- Change your password to be sure that it's safe.
- Setup 2FA if you haven't already

Or, you know, ditch Blockchain.info all together.

Yeah, happened with me too. Good thing almost all of my email addresses, at least things like personal email, email addy I use for here and accounts all have different passwords.

Seems like a bruteforce attempt, I remember a similar thread in Scam accusation. My guess is, somehow the wallet IDs got leaked, and with BC.info not caring enough to implement a captcha or account lock after certain number of invalid attempts... you can figure what happens

[calkob]

Thanks all for the replies 

I do currently have 2FA on the account and i basically only use it as a watch only for the majority of my paper wallets.  i do keep a small amount there as their ios app is pretty good to use in shops.

 Think this has been a brute force attempt, baffels me why someone would even try and guess the password when you can clearly see the account has 2FA.  anyway thanks again

[mexxer-2]

Thanks all for the replies 

I do currently have 2FA on the account and i basically only use it as a watch only for the majority of my paper wallets.  i do keep a small amount there as their ios app is pretty good to use in shops.

 Think this has been a brute force attempt, baffels me why someone would even try and guess the password when you can clearly see the account has 2FA.  anyway thanks again

Seems so, I am guessing their intention is to collect email:passwords(not quite sure as to how they're planning to do it) as they should know that any login from a new IP requires email confirmation.

From the multiple brute-force attempts with different IPs, I believe its safe to assume that a list of walletIds has been released and 'hackers' all over the world are trying to make use of it

[WikipediaSeo]

Also, you can choose sms notification from the security option because this tend to be than email.

Before you or anyone is authoize to access account, a notification sms code will be sent to your mobile phone which is associated with the account.

I got series of such message in the past. In addition you will need to change your pw by choosing a stronger passw as earlier stated by some senior memer's.


I hope it will help
Thanks

[mexxer-2]

From the multiple brute-force attempts with different IPs, I believe its safe to assume that a list of walletIds has been released and 'hackers' all over the world are trying to make use of it

Either I was right , or I was right:

Authorize log-in attempt

An attempt to login to your blockchain.info wallet was made from an unknown browser. Please confirm the following details are correct:

Time: 2016-02-15 11:23:42
IP Address: 109.205.115.115 (Iraq)
Browser: Chrome 11
User Agent: Mozilla/5.0 (68K) AppleWebKit/567.0 (KHTML, like Gecko) Chrome/11.0487.569 Safari/567
Please check the ip address and browser carefully. If the above details are correct click the following link to approve the request:

[ShrykeZ]

Had the same thing as well, even though my account has 2FA as well 

[gentlemand]

There are better options in every direction you look these days. There's no reason to have an account there any more.

[southafricadude]

I got exactly the same email the other day, and apparently so are lots of other people. Just dont click the link to allow access to that person.
Make sure you got 2fa enabled, and a second password on your account

[Kprawn]

They are just phishing... I got the same email and just ignored it. Just change your password in case they were successful to access your email account.

Unsolicited emails goes directly to my junk mail folder, and after I checked them, to my deleted folder.  What type of 2FA did you place on your

account? I have more than one account to serve as honey traps. If they trigger one account, without 2FA, I know my main account is in jeopardy and I

move the funds to more secure storage. 

[calkob]

Just got another email this morning, this time an attempt from Russia, although they could just be using a vpn of course.  There must be some sort of list with id's floating about the dark web or something.....

Fair play to blockchain i suppose there security measures have held up obviously,

  What type of 2FA did you place on your

using google authenticator.