Someone seems to have been trying to get into my accounts for a few weeks
It started with a week of my Tangerine being locked for no clear reason three times and me having to call to unlock it. That was several weeks ago. It wasn't clear what happened and I thought maybe it's just someone entering the wrong email address as their login, since for some reason lots of people think they have my email address. I didn't even know it was possible to log into Tangerine with an email address, in my opinion this is a very strong weakness especially given the lack of 2FA and the weak passwords, so I not only changed my password but also changed the email address associated with it to one I very rarely give anyone. It's only when I changed my email address that the account stopped getting locked. When I called the bank, they were able to tell me the fraudster was using a Montreal IP. I'm not in Montreal.
More recently, someone tried to get into my cellphone account. The provider sent me an email saying there was an unusual login and my account was locked. The email was weird because it kind of implied that both my user name and password were used, in which case I don't know how they could possibly find the login suspicious. This was a very unique password so it's also hard to believe.
Now today, someone got into my voip service account. It DID tell me that there was a login and that it came from a Montreal IP (I receive emails when there's a login from a new browser). I was using a weaker password here, one impossible to guess but that I have used before and that I could have been in one of those leaks. It's my fault for not making that account more secure but to be honest there isn't much to do with this voip service, it's mostly something I use because I still like to have a landline at home when family is calling. I changed password obviously.
I guess I should have been vigilant and reset all my passwords but my passwords are typically very strong unless it's a forum account I don't care about or something like this. I've made a list of all the accounts I could think of but I feel like I'll always forget about one. Typically anything money related, I would make extra secure, but I've been slightly neglectful with my cellphone and voip accounts. I have some concerns that someone would try porting my number. I've enabled my provider's port protection thing.
Recommendations? It all feels so targeted, I'm not sure how anyone would know I use that voip service in particular and why they'd target it.
More recently, someone tried to get into my cellphone account. The provider sent me an email saying there was an unusual login and my account was locked. The email was weird because it kind of implied that both my user name and password were used, in which case I don't know how they could possibly find the login suspicious. This was a very unique password so it's also hard to believe.
Now today, someone got into my voip service account. It DID tell me that there was a login and that it came from a Montreal IP (I receive emails when there's a login from a new browser). I was using a weaker password here, one impossible to guess but that I have used before and that I could have been in one of those leaks. It's my fault for not making that account more secure but to be honest there isn't much to do with this voip service, it's mostly something I use because I still like to have a landline at home when family is calling. I changed password obviously.
I guess I should have been vigilant and reset all my passwords but my passwords are typically very strong unless it's a forum account I don't care about or something like this. I've made a list of all the accounts I could think of but I feel like I'll always forget about one. Typically anything money related, I would make extra secure, but I've been slightly neglectful with my cellphone and voip accounts. I have some concerns that someone would try porting my number. I've enabled my provider's port protection thing.
Recommendations? It all feels so targeted, I'm not sure how anyone would know I use that voip service in particular and why they'd target it.