- Aug 25, 2001
- 56,572
- 10,208
- 126
I was sitting at my computer earlier tonight, and I got an IM from "AOL System Msg", telling me that I was suddenly logged in from two locations.
I thought that was pretty odd, as the only computer that I own that has AIM installed is the one that I was sitting at.
So I figure someone must have hacked my password, which in hindsight wouldn't have been horribly difficult. But my username is only known to a select few people, and it doesn't show up on Google at all.
I immediately went to change my password, which was temporarily thwarted by the fact that AOL requires you to use/have a "secret question" before you can access you account info. So I had to choose one. (Btw, I really dislike "secret questions". Often, the selection of questions is not so secret, such that if you answered honestly, then those questions become yet another weak link in the security chain. I believe that they weaken, not strengthen, security.)
So I made a secret question, and then I was able to change my password. It failed the first few times, apparently I made a typo or something, I almost had a heart attack because I thought that the hacker had changed my password on me already. But finally, the password change went through.
So, does anyone know how this sort of thing happens? Are there people out of the blue that can guess both usernames AND passwords? Or should I sweep my machine for a keylogger?
I thought that was pretty odd, as the only computer that I own that has AIM installed is the one that I was sitting at.
So I figure someone must have hacked my password, which in hindsight wouldn't have been horribly difficult. But my username is only known to a select few people, and it doesn't show up on Google at all.
I immediately went to change my password, which was temporarily thwarted by the fact that AOL requires you to use/have a "secret question" before you can access you account info. So I had to choose one. (Btw, I really dislike "secret questions". Often, the selection of questions is not so secret, such that if you answered honestly, then those questions become yet another weak link in the security chain. I believe that they weaken, not strengthen, security.)
So I made a secret question, and then I was able to change my password. It failed the first few times, apparently I made a typo or something, I almost had a heart attack because I thought that the hacker had changed my password on me already. But finally, the password change went through.
So, does anyone know how this sort of thing happens? Are there people out of the blue that can guess both usernames AND passwords? Or should I sweep my machine for a keylogger?
Facebook
Twitter