Hey everyone, I really need your help with a troubling situation. Recently, I discovered that someone accessed my Google account without any notifications, which I only realized when they changed the password for one of my linked accounts (Airtm). I quickly changed my Google password, logged out of all devices, and enabled two-factor authentication (2FA). But then I received an email saying '2FA removed'—no explanation, just that. I changed my password again, re-enabled 2FA, and logged out of all devices (except my phone). Now I've found that my Instagram, which is linked to the same Google account, had its email and password changed again without any login notification from Instagram, just an email about the change. I'm really confused about how they keep getting in and bypassing notifications. What should I do next?
4 Answers
Definitely make sure to use 2FA! It's critical, but also make sure all your recovery options are secure. After creating your Gmail account, always set up 2FA as a safety measure.
Have you checked if you can see those login locations? It could help you identify how they're accessing your account. I noticed one login was from France, and it might be through a VPN.
You might want to check if there are any unusual activities linked to your account’s security. And don’t worry about the nationality comments - focus on securing your account. That’s what matters!
It sounds like one of your devices might be compromised. You should check where you're logged in across all your devices. If you notice any suspicious devices or locations, that's a big red flag.
Agreed! It's good to remember that even with 2FA, if your recovery emails or phone numbers are compromised, attackers can reset everything.