{"id":1614,"date":"2015-05-19T18:01:26","date_gmt":"2015-05-19T18:01:26","guid":{"rendered":"http:\/\/www.nikola-breznjak.com\/blog\/?p=1614"},"modified":"2015-08-03T06:00:54","modified_gmt":"2015-08-03T06:00:54","slug":"i-just-got-an-email-from-google-saying-that-someone-logged-in-to-my-account-using-some-different-email-address","status":"publish","type":"post","link":"https:\/\/nikola-breznjak.com\/blog\/miscellaneou\/i-just-got-an-email-from-google-saying-that-someone-logged-in-to-my-account-using-some-different-email-address\/","title":{"rendered":"I just got an email from Google saying that someone logged in to my account using some different email address!?"},"content":{"rendered":"<p>This got me pretty alarmed:<\/p>\n<p><a href=\"http:\/\/www.nikola-breznjak.com\/blog\/wp-content\/uploads\/2015\/05\/GoogleHackAttemptFullMail.png\" rel=\"lightbox[1614]\"><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1623\" src=\"http:\/\/www.nikola-breznjak.com\/blog\/wp-content\/uploads\/2015\/05\/GoogleHackAttemptFullMail.png\" alt=\"GoogleHackAttemptFullMail\" width=\"961\" height=\"663\" srcset=\"https:\/\/nikola-breznjak.com\/blog\/wp-content\/uploads\/2015\/05\/GoogleHackAttemptFullMail.png 961w, https:\/\/nikola-breznjak.com\/blog\/wp-content\/uploads\/2015\/05\/GoogleHackAttemptFullMail-300x207.png 300w\" sizes=\"auto, (max-width: 961px) 100vw, 961px\" \/><\/a><\/p>\n<p>I immediately checked the devices from which it was accessed but couldn&#8217;t see any different from what I use usually. Nevertheless, even though I use two-factor authentication, I changed my password immediately.<\/p>\n<p>Now, has any one of you had a similar experience? I thought the &#8220;problem&#8221; could be related with Google ignoring the dot (.) in the email thus for example john.doe@gmail.com and johndoe@gmail.com would come to the same email address. But, someone used the added numbers 33, so this hardly would pass as the same use case.<\/p>\n<p>Anyways, still kind of baffled about it, so would appreciate some insight from more knowledgeable users.<\/p>\n<p><strong>edit:<\/strong> I asked this question on another StackExchange site (StackOverflow is a part of StackExchange btw) called <a href=\"http:\/\/webapps.stackexchange.com\/questions\/78241\/i-just-got-an-email-from-google-saying-that-someone-logged-in-to-my-account-usin\">Web Applications<\/a> and will see if I get some explanation\u00a0 there.<\/p>\n<p><strong>edit2:\u00a0<\/strong>The answer, as that usually is the case with StackExchange sites, came pretty swiftly. User\u00a0<a href=\"http:\/\/webapps.stackexchange.com\/users\/354\/al-e\">Al E.<\/a>\u00a0responded:<\/p>\n<blockquote><p>It&#8217;s hard to tell exactly what you&#8217;ve got here. (I don&#8217;t speak or read the language. (Slovenian? Croatian?)) I suspect one of two possibilities:<\/p>\n<ol>\n<li>Someone logged in (or tried to log in) from an area where you usually aren&#8217;t. (I might get a message if someone tried to log in from China, when I&#8217;m on the East Coast of the U.S.)<\/li>\n<li>More likely, I think, is someone has set your email address to be their recovery email or alternate email, and probably by mistake<\/li>\n<\/ol>\n<p>I think you&#8217;ve done the responsible thing. You&#8217;re already using two-step authentication and you&#8217;ve changed your password. This probably won&#8217;t ever come up again. I wouldn&#8217;t worry any more about it.<\/p><\/blockquote>\n<p>And my comment on it was:<\/p>\n<blockquote><p>Thanks for your answer. Sorry for not translating Croatian (very close guess btw!), but essentially what it says is that someone just signed in to my account nikolabreznjak33@gmail.com, then some details and then the question with a link if I don&#8217;t recognize this activity. Since this email isn&#8217;t mine I&#8217;m inclined to thinking that the possibility 2 really is the case, be it intentional or unintentional. But yeah, I probably should have a peace of mind having changed the pass immediately and since I have a two-way auth enabled. Thanks for reassurance! \u2013<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>This got me pretty alarmed: I immediately checked the devices from which it was accessed but couldn&#8217;t see any different from what I use usually. Nevertheless, even though&hellip;<\/p>\n","protected":false},"author":1,"featured_media":1622,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[32],"tags":[],"class_list":["post-1614","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-miscellaneou"],"_links":{"self":[{"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/posts\/1614","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/comments?post=1614"}],"version-history":[{"count":5,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/posts\/1614\/revisions"}],"predecessor-version":[{"id":1630,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/posts\/1614\/revisions\/1630"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/media\/1622"}],"wp:attachment":[{"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/media?parent=1614"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/categories?post=1614"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nikola-breznjak.com\/blog\/wp-json\/wp\/v2\/tags?post=1614"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}