{"id":286782,"date":"2017-01-21T13:23:10","date_gmt":"2017-01-21T19:23:10","guid":{"rendered":"http:\/\/itblog.lcisd.net\/?p=286782"},"modified":"2017-01-21T13:23:10","modified_gmt":"2017-01-21T19:23:10","slug":"update-wide-impact-highly-effective-gmail-phishing-technique-being-exploited","status":"publish","type":"post","link":"https:\/\/itblog.lcisd.net\/?p=286782","title":{"rendered":"**Update** Wide Impact: Highly Effective Gmail Phishing Technique Being Exploited"},"content":{"rendered":"<p>Mark Maunder \u2013 Wordfence Founder\/CEO \u2013 <a href=\"https:\/\/twitter.com\/mmaunder\" target=\"_blank\">@mmaunder<\/a><\/p>\n<h1>Update: How to check if your account is already compromised<\/h1>\n<p>I\u2019ve had two requests in the comments about this so I\u2019m adding this section now. (at 9:39am Pacific time, 12:39am EST).<\/p>\n<p>There is no sure way to check if your account has been compromised. If in doubt, change your password immediately. Changing your password every few months is good practice in general.<\/p>\n<p>If you use GMail, you can check your login activity to find out of someone else is signing into your account. Visit <a href=\"https:\/\/support.google.com\/mail\/answer\/45938?hl=en\" target=\"_blank\">https:\/\/support.google.com\/mail\/answer\/45938?hl=en<\/a> for info. To use this feature, scroll to the bottom of your inbox and click \u201cDetails\u201d (very small in the far lower right hand corner of the screen). This will show you all currently active sessions as well as your recent login history. If you see active logins from unknown sources, you can force close them. If you see any logins in your history from places you don\u2019t know, you may have been hacked. [Thanks <a href=\"https:\/\/www.wordfence.com\/blog\/2017\/01\/gmail-phishing-data-uri\/#comment-38409\">Ken<\/a>, I pasted your comment in here almost verbatim. Very helpful.]<\/p>\n<p>There is a trustworthy site run by Troy Hunt who is a well known security researcher where you can check if any of your email accounts have been part of a data leak. Troy\u2019s site is\u00a0<a href=\"https:\/\/haveibeenpwned.com\/\" target=\"_blank\">https:\/\/haveibeenpwned.com\/<\/a>\u00a0and it is well known in security circles. Simply enter your email address and hit the button.<\/p>\n<p>Troy aggregates data leaks into a database and gives you a way to look up your own email in that database to see if you have been part of a data breach. He also does a good job of actually verifying the data breaches he is sent.<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Mark Maunder \u2013 Wordfence Founder\/CEO \u2013 @mmaunder Update: How to check if your account is already compromised I\u2019ve had two requests in the comments about this so I\u2019m adding this section now. (at 9:39am Pacific time, 12:39am EST). There is<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33,20,13,6,37],"tags":[],"class_list":["post-286782","post","type-post","status-publish","format-standard","hentry","category-browsers","category-cloud","category-email","category-security","category-social-networking"],"_links":{"self":[{"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/posts\/286782","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=286782"}],"version-history":[{"count":5,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/posts\/286782\/revisions"}],"predecessor-version":[{"id":286787,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=\/wp\/v2\/posts\/286782\/revisions\/286787"}],"wp:attachment":[{"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=286782"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=286782"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/itblog.lcisd.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=286782"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}