security breach password reset
I have just received a notice that my password was changed at my bank and now I can't get into my email. I have contacted the bank and no money was moved, i cancelled all online banking and got a new email address. I am going to reformat my computer, is there anything else I should do ? Is there anything to prevent this or do you know what caused it? thank you. Kathryn
Agree with r-k.
Also check your machine for viruses, etc to be sure that there wasn't a keylogger installed.
And, what is the relationship with your email account and your on-line bank account?
Also check your machine for viruses, etc to be sure that there wasn't a keylogger installed.
And, what is the relationship with your email account and your on-line bank account?
ASKER
I recieved a phone call from the bank and went to the bank in person to verify. no association with email and bank. I am getting a bunch of numbers and letters saying I cn't get to my email. I have cancelled all online banking and signed up with a new email from a different provider. I want to reformat incase I can't get the keylogger or virus out.
If your password at the bank and your password for your email was changed without your authorization, I would lean toward an infected computer.
If you choose to reformat and reinstall from scratch, make sure that you have both a firewall and anti-virus software loaded. There are lots of good anti-virus software but I personally perfer Norman.
Then connect to the net and the first thing that you do is update your system starting with the security patches first.
Install and use an email client that has junk filtering capability. I use Thunderbird for this.
Make sure to check for updates *daily* on your AV, system and application software.
If you choose to reformat and reinstall from scratch, make sure that you have both a firewall and anti-virus software loaded. There are lots of good anti-virus software but I personally perfer Norman.
Then connect to the net and the first thing that you do is update your system starting with the security patches first.
Install and use an email client that has junk filtering capability. I use Thunderbird for this.
Make sure to check for updates *daily* on your AV, system and application software.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Also, it is possible the keylogger/virus is not very sophisticated, in which case you can do the following first, because it just takes a couple of minutes:
(1) Download Autoruns from: http://www.microsoft.com/technet/sysinternals/utilities/Autoruns.mspx
(2) Run the program. It lists a bunch of things that start when Windows starts.
(3) From the menu bar, select Options, and uncheck "Include Empty Locations" and "check" "Hide Microsoft Entries"
Important -> Then click the Refresh button in the toolbar.
(4) This will give you a shorter, more meaningful list.
(5) Use the File -> Save as.. option in Autoruns to save the list to a text file and then cut and paste it here.
This will reveal many common types of malware.
(1) Download Autoruns from: http://www.microsoft.com/technet/sysinternals/utilities/Autoruns.mspx
(2) Run the program. It lists a bunch of things that start when Windows starts.
(3) From the menu bar, select Options, and uncheck "Include Empty Locations" and "check" "Hide Microsoft Entries"
Important -> Then click the Refresh button in the toolbar.
(4) This will give you a shorter, more meaningful list.
(5) Use the File -> Save as.. option in Autoruns to save the list to a text file and then cut and paste it here.
This will reveal many common types of malware.
Well, the first thing I would do is to confirm this with your bank either by telephone or in person. Do not rely on any email from the bank. Please do not reformat your computer quite yet. There are a whole lot of phishing (i.e. fake) emails flying around pretending to be from various banks, and most of them look very real but they are all fake.
Please let us know how you received that notice. If by email then do not trust it without independent verification.
"....and now I can't get into my email."
Please clarify this point. How is your email connected with your bank? Do you work for the bank? In what way does the bank provide your email address?
"Is there anything to prevent this or do you know what caused it?"
Yes, there are several steps you can take to stay safe online, but please post back with the above information and I'll try to help further.
Thanks.
PS: Here is an excerpt from an email I got from my "bank" just yesterday"
"We are sorry to inform you that we noticed multiple failed logins at your account
This Security Measure is used to prevent identity theft and to secure your account......."
It was quite fake, of course.