Gmail keeps getting hacked even after changing password

Hi all,

Thankfully gmail has a description of account activiy and which IP/Country has accessed your account. Below, I've removed my IP for privacy, and you can also see a US IP keeps accessing my email.

I didn't have an easy password, and I didn't use it on other sites. I changed my password last night, and as you can see the US IP is still accessing my account (I had also used the 'sign out from all other locations" feature). They hacked the new password overnight it looks like.

History: I've never had an intruder problem except in March, after I had visited NYC, and I had used a public internet/printing services place. After seeing that my password had been compromised (unsurprisingly, as it was stupid for me to log-in there). I changed my password and for at least a month and a half, I never saw an intruder again. Which is why I am especially uneasy that I've been 'hacked' now, and overnight, even with a password change (using capitals, numbers, and symbols), it didn't prevent them for more than a couple of hours.

HELP. What do I do.

Access Type [ ? ]
(Browser, mobile, POP3, etc.) Location (IP address) [ ? ] Date/Time
(Displayed in your time zone)
Browser (Firefox) Show details * Canada (xx.xxx.xxx.xx) 10:19 am (0 minutes ago)
Browser (Firefox) Show details * Canada (xx.xxx.xxx.xx) 9:44 am (35 minutes ago)
IMAP United States (74.82.80.243) 9:44 am (35 minutes ago)
SMTP United States (74.82.80.243) 9:44 am (35 minutes ago)
IMAP United States (74.82.80.243) 6:09 am (4 hours ago)
IMAP United States (74.82.80.243) 2:14 am (8 hours ago)
Browser (Firefox) Show details * Canada (xx.xxx.xxx.xx) May 24 (12 hours ago)
IMAP United States (74.82.80.1) May 24 (12 hours ago)
Browser (Firefox) Show details Canada (xx.xxx.xxx.xx) May 24 (12 hours ago)
Browser (Firefox) Show details Canada (xx.xxx.xxx.xx) May 24 (12 hours ago)

Look into your setting to see if there is any secondary/recovery e-mail address set-up. If there is, make sure it's yours.
If there is a phone number attached to your account - make sure it's yours.

Done... both recovery are my email and my phone

You probably have spyware or maybe even a keylogger on your pc so when you change your password the hacker also gets the new one. You need a PC cleanup

Thanks, I will sign up for ESET NOD32

Weird thing is I have 2 other gmail accounts I access from time to time (use these for signing up for websites and promos), and they have never been breached once

Will definitely do a major computer scan though, what with bank accounts I access

sounds like a keylogger

make sure to also activate 2-step login. then everytime you enter your password to login, Gmail sends a confirmation code via text to your cellphone and you must enter that code in the browser to access your account.
That way even if someone steals your password they can't login unless they also have access to your cellphone.

Yup, sounds like a keylogger. 2x on 2-step login.

also... maybe your phone is compromised... should do a scan on it too. Ppl don't think that their phone can have loggers too.

FFS

It must be. At the same time I re-set my gmail password in March, I did it for my Facebook as well (the was a Candian IP breach)-- and I set up 2 step verification on facebook (without knowing I could do it for Gmail too)

Well let me tell you!! Someone managed to get in past the 2 step auhorization code sent to my phone for facebook. Because they were able to name their devices as "recognized", and I never saw an authorization I didnt prompt pop up on my phone. Really, dont know how they do it.

fiery1 said:

FFS

It must be. At the same time I re-set my gmail password in March, I did it for my Facebook as well (the was a Candian IP breach)-- and I set up 2 step verification on facebook (without knowing I could do it for Gmail too)

Well let me tell you!! Someone managed to get in past the 2 step auhorization code sent to my phone for facebook. Because they were able to name their devices as "recognized", and I never saw an authorization I didnt prompt pop up on my phone. Really, dont know how they do it.

Click to expand...

Let me guess. You have a Blackberry?

Yes! can you tell me what's going on?

It's a work berry so I don't think I'd be able install an antivirus, would have to ask work IT to do it or something.

I currently live in Ottawa

and someone accessed my FB from Waterloo on a Berry and Calgary on an ipad.

Meanwhile people from the U.S. on the Gmail. Can't keep anything private anywhere.

I'd really like to know what the deal about Blackberry, it's the phone I use to receive text messages for 2-step verification.

Would I be safer to send verification codes to my iPhone?

turn on 2-step verification

OK, here's the deal.

Your Blackberry is probably using BES or BIS and is proxying most if not all of your requests through Blackberry's servers, which are located in... wait for it... Waterloo, ON. They have servers in the United States as well. These servers will access your accounts in a secure manner but it may look like you've been hacked. Stop worrying...