This past weekend, I've received at least three two-step verification codes sent to my phone, yet this request wasn't generated by me. I assume someone else is trying to access my account - is that correct? I had the same thing happen 2 or 3 months ago and I changed my password. Now it's happening again - is changing my password the right solution and the only solution?
Solved! Go to Solution.
Hey there @chstew52
This is exactly why you should have two-step verification enabled, thanks for keeping your account secure.
Did you make a big password shift, or did you just modify a letter or number? I'd also check https://haveibeenpwned.com/ to see if your email has been compromised as well. I recommend a fully different password, if you're going from "password" to "p4ssw0rd" and the password has been compromised there may be an attempt to brute-force in with the most likely combinations.
Yes I did change my password earlier in the summer. It wasn't a minor (one letter or number) but a complete do-over. Thanks for confirming what I suspected. I will change it once again!!
Thanks for the update, unfortunately passwords get compromised all the time
I wrote in this troubleshooting guide some steps you can run to check your computer for potential malware (if you're running MacOS, updates for the OS and browser plugins are also areas to check).
"There's a great guide here and here by HowToGeek around this for those who aren't as familiar with how to secure your computer, and a very advanced guide on how to remove any viruses/trojans, etc. If you have spyware on your machine or device, whatever you change your password to will be recaptured and used by bad actors."
Stay safe out there!