I've just logged into someone else's account, using my own details?

[WorraLiberty]

I have no idea how this happened?

I logged in using my usual email address and password, went to TIO and realised I hadn't been on any of the threads in question and the account settings were completely different

Then I realised it was someone else's account? Needless to say I logged straight out. I entered the same details again and now I'm back as me.

For the record, I'm not a name changer and have never heard of the person who I logged in as (see attached pic).

[WhentheDealGoesDown1]

I checked my password but I had already changed it, so it is ok to check it if you change it afterwards and don’t use the password for anything else, I checked for my own interest and I had not changed that password since the last large data breach, it was ok though, no breaches

[WhentheDealGoesDown1]

Always best to change your password if you suspect there has been any kind of data breach

[traceyturnblatt]

@mnhq I haven't received an email, been forced to logout or anything.

What's going on?

[mateysmum]

@MNHQ
I was logged out and now can't log back in on chrome. Explorer and my ipad are fine so I know the details are correct.
Chrome just takes the log on and then does nothing. The sign in box remains on screen but won't refresh.

[Toooldtobearsed2]

SomethingOnce you are probably right - several hundred people using the same password...... and here was I thinking I was unique:)

[Buteo]

I don't regard HIBP as a "random site", and checking a password that is only used for MN and has already been changed isn't exactly high risk.

[thesnapandfartisinfallible]

I've been forced out and had to log back in but I've been me all the time. If anyone else has impersonated me by accident I'd appreciate them letting me know.

I'm sure MNHQ will inform everyone anyway but I appreciate it won't be for a few hours as they're busy fixing it.

[LilyMumsnet]

[quote traceyturnblatt]@mnhq I haven't received an email, been forced to logout or anything.

What's going on?[/quote]

Hello,

Are you using the app? If so, you'll be logged out shortly. If this isn't on the app, please let us know.

[Toooldtobearsed2]

@Buteo thanks for that, you have put my mind at ease. I did input my passwords there to check and was overjoyed to see no breech with 16 of them, just the one used for MN, which has been changed, was breeched.

From the earlier replies, I thought I was facing having to change ALL my passwords - but happy not to now.

My email address has been hacked too, not sure if I need to do anything about that? Do I REALLY need to change it?

gah.....I am a luddite at heart because I am too old for this new fangled technology

[C8H10N4O2]

I don't regard HIBP as a "random site", and checking a password that is only used for MN and has already been changed isn't exactly high risk


When you get right down to it, it is a hobby site which collates large amounts breach data.

It can be a very useful hobby site if you want to check an email address, but certainly not one i'd contribute my passwords to voluntarily. Even passwords which have been changed.

Incidently sharing passwords breaches T&Cs for most organisations, especially with the collation of breach data there.

[BBInGinDrinking]

For anyone not already aware, there is now a sticky thread from Justine/MNHQ at the top of AIBU about this - everyone should read it all.

[Buteo]

Hence why I would only ever check an MN password which is attached to a throwaway email account.

[C8H10N4O2]

Hence why I would only ever check an MN password which is attached to a throwaway email account.

With respect, you did not state that in your endorsement of entering passwords to an internet site whose provenance you cannot warranty.

In fact even entering passwords which have changed is unwise since unless you generate passwords randomly with a password generator there will be patterns in them over time.

Disposable email addresses are fine but if your model of disposable is to vary the name before the "@" against domains you own you are still identifiable and connectable.

[WhentheDealGoesDown1]

When stuff like this happens it reminds us to be mindful of what information you post on any social media website

And yes I do use a password generator unless I know I am going to be asked for 3 digits of a word

[Vixxxy]

Ahh is this why I was randoml;y logged out when I tried logging in tonight..makes sense. There seems to be a large amount of security breaches on this site recently..a bit worrying, especially given the type of people who are obsessed with this site and getting at the women who post here.

[MakeItAmazing]

I didn't get an answer to my previous question but I'll try again with another query and hope someone is willing to help. I've just logged on to check the pwn site and the email linked to here is okay but my main emails has been pwned twice on breached sites and no pastes.

I don't understand any of that. Please can someone advise me of the best thing to do. Thank you.

[Xenia]

If you went on that we have been pawned site I linked to and it shows you main email address has been disclosed and its password then change your email address to a very different one.

[MakeItAmazing]

Thank you Xenia. Could you advise me how I do it when I can't remember my password to my main account ?.

[burrobirra]

@MakeItAmazing Your email appearing in relation to two breached sites simply means that two sites you have shared your login details with have had their security compromised, exposing your email and possibly your password in the process.

Unfortunately, this also means that, to be safe, you'll have to change your password on every single site with which you've used this particular email/password combination.

You mentioned that you've forgotten your password? On most sites there should be an option on the login screen that allows you to reset it. Try that, perhaps?

[MakeItAmazing]

Thank you burrobirra. I tried sensitive passwords and none were compromised but my problem is my main email said it was twice but I can't remember the email password as I never log out and now I can't find anywhere in which to change the password.

Thank you also to you, Xenia. I'm stuck as don't remember my email, password.

[HeathRobinson]

Do you have a recovery email address linked to your main one?

[MakeItAmazing]

Can't remember the password to that either.

[HeathRobinson]

Ah! I write mine down. I know you're not supposed to but there's no way I'll remember them.

I take it your phone's not linked up with it either?

[BBInGinDrinking]

The general 'send to all' emails are still on their way out and arriving.

[princessTiasmum]

I was also logged out tonight, i always stay logged in because i cant always remember my password, but as soon as i entered my email, my password automatically logged me in