blockchain.info wallet hack attempt?

[micalith]

Hey, I got emailed this the other day:

"Two Factor Authentication Disabled

A request to remove two factor authentication from blockchain.info wallet identifier [....................] was approved. Two factor authentication is now disabled."

I certainly didn't make the request. I'm confused about how someone managed to turn off my two factor authentication. They didn't get access to my wallet. Is this common?

[NUFCrichard]

Hey, I got emailed this the other day:

"Two Factor Authentication Disabled

A request to remove two factor authentication from blockchain.info wallet identifier [....................] was approved. Two factor authentication is now disabled."

I certainly didn't make the request. I'm confused about how someone managed to turn off my two factor authentication. They didn't get access to my wallet. Is this common?

This is not common, re-add 2FA as soon as possible and contact Blockchain.info.  I would probably move any bitcoins out of that address too, run a virus scan, check your sent emails in case the request is still there, change your email password, essentially do everything to stop them from getting into your account.

[Sharpe]

It might be a phishing email to get you to click and log in. Have you checked? Post the email details here including the actual email address it was sent from.

[Remember remember the 5th of November]

It might be a phishing email to get you to click and log in. Have you checked? Post the email details here including the actual email address it was sent from.

Sounds like he got phished then. He probably entered his password...

[Monetizer]

Make sure you check over the email as other have stated as it may not be a legitimate email. But your right this could be a hacking attempt, did you have much btc in the account?

[micalith]

This is not common, re-add 2FA as soon as possible and contact Blockchain.info.  I would probably move any bitcoins out of that address too, run a virus scan, check your sent emails in case the request is still there, change your email password, essentially do everything to stop them from getting into your account.

Yeah, thanks, I did the password changes,  re-enabled 2-factor authentication etc as soon as I got the email. They hadn't gained access to my wallet, or hadn't taken anything from it at least. It's an old wallet I hadn't used for nearly a year, with not much coin in it.

It might be a phishing email to get you to click and log in. Have you checked? Post the email details here including the actual email address it was sent from.

Yeah, I wondered about that too. I did my ususal logging in to blockchain.info with my linux USB boot drive, and typed in the wallet identifier. 2-factor authentication was in deed disabled.

from:   Blockchain <no-reply@blockchain.info>
to:   my email
subject:   Two Factor Authentication Disabled
mailed-by:   mail.blockchain.info
Signed by:   mail.blockchain.info

[innocent93]

This is not common, re-add 2FA as soon as possible and contact Blockchain.info.  I would probably move any bitcoins out of that address too, run a virus scan, check your sent emails in case the request is still there, change your email password, essentially do everything to stop them from getting into your account.

Yeah, thanks, I did the password changes,  re-enabled 2-factor authentication etc as soon as I got the email. They hadn't gained access to my wallet, or hadn't taken anything from it at least. It's an old wallet I hadn't used for nearly a year, with not much coin in it.

It might be a phishing email to get you to click and log in. Have you checked? Post the email details here including the actual email address it was sent from.

Yeah, I wondered about that too. I did my ususal logging in to blockchain.info with my linux USB boot drive, and typed in the wallet identifier. 2-factor authentication was in deed disabled.

from:   Blockchain <no-reply@blockchain.info>
to:   my email
subject:   Two Factor Authentication Disabled
mailed-by:   mail.blockchain.info
Signed by:   mail.blockchain.info

Hmm...but you didn't lost any Bitcoin so far after your wallet hacked, it's wired he hacked but not steal.

I recommend you use your wallet on a unjailbreak iOS devices, and don't add your email to your wallet because if your email got hacked, your wallet got hacked too.

[Gisado]

You should move your coins to other clients (Bitcoin core/qt if you want full node, electrun/multibit if you don't want fullnode), as you now know it is not secure.

[micalith]

You should move your coins to other clients (Bitcoin core/qt if you want full node, electrun/multibit if you don't want fullnode), as you now know it is not secure.

I do like blockchain wallet, but probably not a bad suggestion to get offline.