2 security issues found on your account

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

In article , lid says...

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

You have to ask!!! Do not click link EVER when it comes unsolicited in
particular.

cameo wrote:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

Look at the Received headers in the raw source of the e-mail. That
shows where the e-mail originated. Headers are prepended to an e-mail
as it passes through each server. The topmost Received header will be
from the last server (yours) and the bottommost Received header is what
the sending server added (provided the spammer has not injected their
own fake Received header and why you need to trace backwards through the
Received headers to make sure the 'from' clause in one matches the 'by'
clause in the prior header).

I got that e-mail, too. They're just trying to push their users to
using 2-factor authentication. I don't tote my smartphone everyone with
me nor do I want to go retrieve it when I want to do e-mails from my
desk. I ignored their attempt to push stronger authentication. They
want me to use a more secure e-mail client. All that means is they want
me to use a client that supports OAUTH2, like their e-mail clients,
despite that Google ruined security in OAUTH2 from OAUTH. They want me
to move to 2-factor authentication. I'm not jumping through more
security hoops just so they can deal with less tech support for users
who cannot manage to use strong passwords and don't secure their devices
(no passwords on desktops, just a swipe on smartphones).

On 23 Jan 2018, cameo wrote in
alt.windows7.general:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

I got that same email a few days ago. It ostensibly appears to have
actually come from Google, but I went directly to my account without
clicking on any links in the email and no alerts were presented, except
possibly one about allowing "less secure apps", which I already know
about and approve.

If this is a forgery, it's an expert one. Nevertheless, I think it's
safer to ignore it than to click on any link in the message.

On Tue, 23 Jan 2018 15:24:54 -0800, cameo wrote:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

Is it *actually* from that address, as shown by the "Received"
headers, or is that just what's min the From" line?

--
Stan Brown, Oak Road Systems, Tompkins County, New York, USA
http://BrownMath.com/
http://OakRoadSystems.com/
Shikata ga nai...

On 1/23/2018 3:28 PM, VanguardLH wrote:
cameo wrote:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

Look at the Received headers in the raw source of the e-mail. That
shows where the e-mail originated. Headers are prepended to an e-mail
as it passes through each server. The topmost Received header will be
from the last server (yours) and the bottommost Received header is what
the sending server added (provided the spammer has not injected their
own fake Received header and why you need to trace backwards through the
Received headers to make sure the 'from' clause in one matches the 'by'
clause in the prior header).

I got that e-mail, too. They're just trying to push their users to
using 2-factor authentication. I don't tote my smartphone everyone with
me nor do I want to go retrieve it when I want to do e-mails from my
desk. I ignored their attempt to push stronger authentication. They
want me to use a more secure e-mail client. All that means is they want
me to use a client that supports OAUTH2, like their e-mail clients,
despite that Google ruined security in OAUTH2 from OAUTH. They want me
to move to 2-factor authentication. I'm not jumping through more
security hoops just so they can deal with less tech support for users
who cannot manage to use strong passwords and don't secure their devices
(no passwords on desktops, just a swipe on smartphones).


I didn't act on that email either, but thanks for telling me what that
is about. I agree with you about the2-factor authentication. Banks are
really pushing it lately, totally ignoring that it would be pretty
useless when one is abroad as text messages don't cross borders as
easily as email. Especially if you are using a local SIM card in that
country.

In message , cameo
writes:
I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

Did it have any links in it?
--
J. P. Gilliver. UMRA: 1960/1985 MB++G()AL-IS-Ch++(p)Ar@T+H+Sh0!:`)DNAf

All I ask is to _prove_ that money can't make me happy.

cameo wrote:

I didn't act on that email either, but thanks for telling me what that
is about. I agree with you about the2-factor authentication. Banks
are really pushing it lately, totally ignoring that it would be
pretty useless when one is abroad as text messages don't cross
borders as easily as email. Especially if you are using a local SIM
card in that country.

Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that you've
been before ... like when you take a vacation a ways from home. I had
Gmail as my recovery e-mail address for my Hotmail account and Hotmail
as my recovery e-mail address for my Gmail account. Well, both locked
me out when I was half a country away on a trip. So I couldn't use one
to unlock the other. Alas, my phone went into the hot tub with me and
was useless so sending me texts didn't work, either. I since changed my
recovery e-mail address for both Gmail and Hotmail to my Comcast
account. As yet, Comcast isn't checking if I connect from somewhere
else and doesn't enforce the same stupidity. That way, I could get a
recovery e-mail at my Comcast e-mail account while using the resort's
computer, or any computer while away from home (since my phone didn't
survive the hot tub). Now I have a much more huge smartphone so it's
not something I can tuck into my swim trunk's pocket.

All that 2-factor, regional checking, prior authorized host, security
questions, and other validation crap is to eliminate THEM from having to
deal with forgotten passwords and crappy passwords (which users often
have the same one at every web site they visit versus me who uses a
unique one at every site and WITHOUT having to use any software, like
Keepass). They pretend they are making your account more secure but
what they are really doing is offering alternate recovery methods to let
you get back in so they don't have to get bothered with tech calls.
They inconvenience the users under the guise of increased security at
the expense of increased user inconvenience. If Comcast ever forces
(not just offers) the same inane authentication and security lockout
scheme(s), I'll have to find a dumber e-mail provider to use as my
recovery e-mail account.

Yes, they do add some security but the methods are arcane. Oh yes, I
need to haul around a smartphone just so I can get into my account. Oh
yes, I get a special login code for a particular client (which doesn't
obviate their regional check) to use instead of my login credentials
because, gee, users are boobs and cannot use strong passwords that are
unique to every site where they login. I don't need nor want all that
security fluff. No one has hacked into my accounts for over 15 years
(and I'm only counting since the Web showed up to the public around 1992
although I've been on the Internet [of which the Web is just one part]
since probably 20 years before that). Since the padlock has proven
effective, I don't need to add more padlocks on the padlocks.

If my bank ever pushes me to 2-factor authentication, I'll tell them
that I don't have a smartphone and that they'll have to provide me one
for free along with them paying for cellular texting service to use
their nuisance scheme. If they attempt to lock me out of online access
to my bank account, that'll be when I contact the State Attorney's
Office (they can be very helpful with guidance on legal direction but
keep your inquiries focused on a narrow topic and realize they can allot
only a small time slot to you).

On 01/23/2018 06:04 PM, Nil wrote:
On 23 Jan 2018, cameo wrote in
alt.windows7.general:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

I got that same email a few days ago. It ostensibly appears to have
actually come from Google, but I went directly to my account without
clicking on any links in the email and no alerts were presented, except
possibly one about allowing "less secure apps", which I already know
about and approve.

If this is a forgery, it's an expert one. Nevertheless, I think it's
safer to ignore it than to click on any link in the message.




Yes. It was a legit message.

Best way to check is to be signed into your gmail on a browser and when
reading the message ...if you are not directed elsewhere and prompted
for user name and p/w all should be OK

On Tue, 23 Jan 2018 20:45:26 -0600, VanguardLH wrote:


Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that you've
been before ... like when you take a vacation a ways from home.



I don't have a Hotmail/Outlook.com account, but I have a Gmail
account. I have often connected to it from places--in the US, in
Europe, in Asia--that I have never been in before. I've done it as
recently as a month ago. I've never had the problem you describe.

If it matters, I never connect to Gmail on the Gmail web site. I
always use an e-mail client--Outlook.exe when I'm home, Bluemail on my
Android phone when I'm traveling.

In message , Ken Blake
writes:
On Tue, 23 Jan 2018 20:45:26 -0600, VanguardLH wrote:

Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that you've
been before ... like when you take a vacation a ways from home.


I don't have a Hotmail/Outlook.com account, but I have a Gmail
account. I have often connected to it from places--in the US, in
Europe, in Asia--that I have never been in before. I've done it as
recently as a month ago. I've never had the problem you describe.

If it matters, I never connect to Gmail on the Gmail web site. I
always use an e-mail client--Outlook.exe when I'm home, Bluemail on my
Android phone when I'm traveling.

Does yahoo have a similar policy? Or the inverse?

A cousin visited (here, UK) in September 2016; I had set up a laptop for
her, using Thunderbird on her yahoo account, not realising that she'd
always used webmail. (I'd not actually tried it out before she arrived,
not wanting to delete or otherwise mark her mail.) When we tried it
after she arrived, we got security fusses - I don't remember the
details; I don't know if this was because of the switch to a different
location, or the switch to client collection rather than webmail: maybe
both triggered it. (Or possibly something else entirely.) I _think_ when
she tried webmail, it was back to being fine.
--
J. P. Gilliver. UMRA: 1960/1985 MB++G()AL-IS-Ch++(p)Ar@T+H+Sh0!:`)DNAf

Quantity is no substitute for quality, but it's the only one we've got.

In article ,
says...

On Tue, 23 Jan 2018 20:45:26 -0600, VanguardLH wrote:

Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that you've
been before ... like when you take a vacation a ways from home.


I don't have a Hotmail/Outlook.com account, but I have a Gmail
account. I have often connected to it from places--in the US, in
Europe, in Asia--that I have never been in before. I've done it as
recently as a month ago. I've never had the problem you describe.

If it matters, I never connect to Gmail on the Gmail web site. I
always use an e-mail client--Outlook.exe when I'm home, Bluemail on my
Android phone when I'm traveling.

My wife was locked out of her email account trying to connect in Toronto
when usually it's Nova Scotia. Don't own any "modern cell phone" so she
was sool Very irritating especially when companies expect you to own
a phone now-a-days like wtf would I want one irritating me all the time
and pay for it?

On Wed, 24 Jan 2018 14:18:38 -0400, pjp
wrote:

In article ,
says...

On Tue, 23 Jan 2018 20:45:26 -0600, VanguardLH wrote:

Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that you've
been before ... like when you take a vacation a ways from home.


I don't have a Hotmail/Outlook.com account, but I have a Gmail
account. I have often connected to it from places--in the US, in
Europe, in Asia--that I have never been in before. I've done it as
recently as a month ago. I've never had the problem you describe.

If it matters, I never connect to Gmail on the Gmail web site. I
always use an e-mail client--Outlook.exe when I'm home, Bluemail on my
Android phone when I'm traveling.

My wife was locked out of her email account trying to connect in Toronto
when usually it's Nova Scotia. Don't own any "modern cell phone" so she
was sool Very irritating especially when companies expect you to own
a phone now-a-days like wtf would I want one irritating me all the time
and pay for it?

What is it that you think you'd find irritating?

If it's too loud, turn it down.
If it's still too loud, set it to vibrate mode.
If it's still too loud, set it to silent mode.
If it's still too busy, set it to airplane mode.
If it's too small, look at a bigger one.
If it's too big, look at a smaller one.
If it's annoying to keep it charged, turn it off when not in use.
If it's too expensive, look at lower cost (trade-off) options.

I could go on, but the point is that it's probably only as irritating as
you allow it to be. Mine doesn't irritate me.

--

Char Jackson

Ken Blake wrote:

VanguardLH wrote:

Both Gmail and Hotmail/Outlook.com will lock you out of your accounts
when you try to connect from somewhere they don't recognize that
you've been before ... like when you take a vacation a ways from
home.

I don't have a Hotmail/Outlook.com account, but I have a Gmail
account. I have often connected to it from places--in the US, in
Europe, in Asia--that I have never been in before. I've done it as
recently as a month ago. I've never had the problem you describe.

If it matters, I never connect to Gmail on the Gmail web site. I
always use an e-mail client--Outlook.exe when I'm home, Bluemail on my
Android phone when I'm traveling.

I don't use webmail clients unless forced. I was using my laptop while
on vacation. I didn't do any e-mail right away. Several days later
when I tried to do e-mail, Gmail locked me out as an unknown host at a
new location. Could be it wasn't due to a change in location but a
change in the host used to connect to their server. However, I've used
different hosts at home with no such security lockout. It was only when
away from home in a significantly different geographical location that
using a different host resulted in the lockout.

I tried to use the Hotmail account as defined in my Gmail account as the
recovery e-mail address (to send a code to unlock Gmail). Hotmail
locked me out too because of unknown host at new location. Gmail was my
recover e-mail address for Hotmail. Both got locked out so I couldn't
do e-mail until I got home (which was a known host at a previously
recognized location). I don't get much personal e-mail and I refuse to
do any company work while on vacation so it wasn't a big hassle. When I
got home, I looked but could find no option to disable their unknown
host checking. So I switched to my ISP's e-mail service which has never
locked me out because I used a different host from a different location.

For Gmail, you can go into your Google account to look at security
events, like Recently Used Devices. They track the hosts you use to
connect to their service. Even when at home, if I use a new device to
log into my Gmail account, they send an unknown device e-mail to my
Gmail account (yeah, they warn me at my Gmail account about a new
unknown sign-in to my Gmail account instead of sending to my recovery
e-mail account). I get that nuisance often enough that I created a
filter to auto-delete that notification e-mail. Luckily it gets
delivered as a normal e-mail into my Gmail Inbox instead of special
messages that bypass all server-side spam and user-defined filtering.
So I defined a server-side filter:

Matches: fromNew sign-in from)
Do this: Mark as read, Delete it

Back when I got locked out, there was no "Allow access to your Gmail
account" link as noted in the following article nor any way to get past
the security alert using their webmail client, plus I wouldn't get the
e-mail anyway since my Gmail account and recovery e-mail account
(Hotmail) were both locked up for the same reason: blocking what
Google/Microsoft consider a suspicious login attempt. It wasn't just my
local e-mail client they blocked from accessing my Gmail or Hotmail
account. I also could not access my accounts using their webmail
clients. They didn't like me coming from either a different host or a
different location or both. That was several years ago. I haven't done
any e-mail while on vacation for awhile so I can't say what would happen
now if I got me a new laptop, netbook, or smartphone (or old ones were
reset with fresh installs of the OS and apps) and tried logging in from
someplace far from home.

https://www.lifewire.com/unlock-gmai...ervice-1171974

I was nearly resigned to using their 2-factor authentication. Instead
of physically linking a smartphone to that process, especially since I
don't always carry a smartphone, and as I recall, you can get a special
password that is generated by them to use in your local e-mail client
for its login credentials. It's just another password so why they think
it is more secure than a regular password is unknown. Maybe they think
that them generating a random strong password that is recorded in my
account is more secure than me using a strong password that unique per
site. I was about to do that but then realized that my ISP's e-mail
service doesn't employ all that security crap. Instead of using a
server-side generated special password in my local e-mail client, I just
changed to using my ISP's e-mail service as the recovery e-mail address.

For awhile (don't know if they're still doing it), local e-mail clients
would stop working with Hotmail. That's because they interrupted the
login process with an interstitial security page (after login but before
they will land you in their webmai client) that has you prove a human is
using that e-mail account. Obviously you can't see the security web
page using a local e-mail client. You had to use their webmail client,
login, get the security page, enter the CAPTCHA or select matching
images, and then get to their webmail client. After that, the local
e-mail client could connect okay thereafter - until they wanted you to
prove again that a human is managing the account. I haven't experienced
that interruption in a few years. Back then, about twice a year my
local e-mail client would get an error while trying to establish a mail
session. So I'd use their webmail client, go through the security
prompt, and my local client started working again. They have dropped
that scheme because many of their users always employ local e-mail
clients instead of the webmail client they like to push, plus they added
2-factor authentication and other security measures (that interfere with
ease-of-use in different ways).

They change what they think is good now for security. So what caused
the lockout of both my Gmail and Hotmail accounts might not be what they
employ now. To be safe, I configure both to use a recovery e-mail
provider without all that security fluff that is actually to reduce
their workload, not their users' (similar to how some ISPs provide free
anti-virus software to reduce their workload on fixing their customers'
infected hosts). They need an account option for "Do not treat me like
an ignorant user" or, more politely phrased as "I am an advanced user"
which lets you disable all security features, including those they do
not list as current options.

J. P. Gilliver (John) wrote:

cameo WROTE:

I found this msg in my Inbox from and I
wonder if this is some kind of fiching attempt.

Did it have any links in it?

Yep. The one for the "Take action" button is a hyperlink to:

https://accounts.google.com/AccountChooser?Email=youraccount&continue=ht tps://myaccount.google.com/security-checkup?args

Alternatively, another hyperlink in the e-mail points to:

https://myaccount.google.com

with text in the e-mail saying to go to Security Checkup under My
Account.

The above URLs are taken from the HTML code, not what might be presented
as text pretending to be the URL in the rendered HTML code. Some
clients let you see the raw source of an e-mail. Some clients will show
a popup of the URL when you hover over a hyperlink; however, I've seen
where that can be fooled, like when punycode was popular to mislead
users as to the domain for the destination. Some clients let you
install add-ons to make that easier. Else, use the webmail client and
its feature to view the original or raw source of the e-mail. The OP
never identified what e-mail client(s) he uses.