My e-mail has been compromised. Again.

[o.pwuaioc]

my primary gmail account was compromised a couple weeks ago. They hadn't changed the password yet, but it had been accessed from like 7 foreign countries before google locked it down themselves. I was able to get back in and set another password.

Not 30 minutes ago I logged into a secondary gmail account I use for junk and got a notice that it has been compromised. It showed it being accessed from Bulgaria earlier this morning. Just changed the password on it too.

I'm now scanning my computer for malware/viruses/whatever lol

If google would let me disable access from foreign countries apparently I would be fine....lol

Change your secret questions to answers that can't be guessed or figured out.

[gtmtnbiker]

For those folks who have had accounts compromised, do you go to sketchy websites that feature pirated stuff or p*rn ? I mean, if you're going to do that type of stuff, I suggest using a sandbox like a VM (virtual machine). Windows 7 does have built-in support or you can get the free VM from VMware.

[bladerunner]

I recommend Gmail with their two-factor authentication. Basically I have an Android app that acts like an RSA keyfob in that it generates a random 6 digit key every 30 seconds. I need my password and the key to login. If I don't happen to have my phone, which I always do, I also keep a list of backup keys in my wallet. Google will generate 10 backup keys for you to keep. Also, make your security questions tough. Security questions are typically the Achilles Heel of all password systems. o.pwuaioc's situation illustrates this perfectly.

Some may say it is excessive, but all security is excessive until it is not enough.