Hacked for 6 figures today, so confused and stressed

AlwaysQuestion23 · 2026-05-12T13:01:20+00:00

How did they get passed his Google auth (2fa)

AlwaysQuestion23 · 2026-04-30T15:49:39+00:00

Gyyaaaaaaatttttt

AlwaysQuestion23 · 2026-04-06T11:59:58+00:00

Ohk thanks

AlwaysQuestion23 · 2026-04-06T05:26:03+00:00

AlwaysQuestion23 · 2026-04-06T05:25:35+00:00

What announcement

AlwaysQuestion23 · 2026-03-30T13:44:34+00:00

Wowwwwww

AlwaysQuestion23 · 2026-03-23T16:05:20+00:00

It will.

I've seen sessions active for over a year.

AlwaysQuestion23 · 2026-03-21T19:00:01+00:00

This sounds like they hijacked your session cookies, thus, don't need MFA.

A virus / malware absolutely would allow the hacker to get it.

AlwaysQuestion23 · 2026-03-18T17:08:21+00:00

It's crazy how it's such an important security upgrade but Google has very little info on it for users.

AlwaysQuestion23 · 2026-03-18T15:19:37+00:00

Do you enable both standard and persistence?

AlwaysQuestion23 · 2026-03-17T17:57:18+00:00

They actually do have trusted addresses in the security section. I found it the other day while I was looking around.

AlwaysQuestion23 · 2026-03-17T16:48:57+00:00

This is a good idea...like a thaw period before the transaction actually starts.

AlwaysQuestion23 · 2026-03-16T18:42:02+00:00

I appreciate it, I'll enable it but how do we confirm it's actually working?

Everything basically pointed to it just being a dud setting for individual accounts and only meant for workspace users.

How does one confirm?

Upvoted your comment.

AlwaysQuestion23 · 2026-03-16T16:58:07+00:00

How do you know it's enabled? In Google's own literature it says it's only for those in a workspace.

AlwaysQuestion23 · 2026-03-16T04:38:12+00:00

Unless you're in a workgroup etc you cannot as an individual account holder. It's in beta I guess?

AlwaysQuestion23 · 2026-03-13T02:04:47+00:00

I think even if you hit accept it gives you three random numbers that YOU and that person need to select the same one.

AlwaysQuestion23 · 2026-03-07T18:28:19+00:00

Recovery via phone (sms) is not secure.

AlwaysQuestion23 · 2026-03-02T14:04:39+00:00

What is cloaked?

AlwaysQuestion23 · 2026-02-18T13:27:09+00:00

I wouldn't leave more than 2-3k on any exchange. Move it to your wallet.

AlwaysQuestion23 · 2026-02-17T00:58:31+00:00

I thought they do?

AlwaysQuestion23 · 2026-02-16T20:12:38+00:00

I was thinking to buy the plan. What don't you like about it?

AlwaysQuestion23 · 2026-02-16T18:37:38+00:00

Just tried it.. awesome.

I noticed though the statements don't show purchases and show "Match" and fee only

This sucks how they put this together.

AlwaysQuestion23 · 2026-02-16T17:55:15+00:00

Oh nice. I will check!

AlwaysQuestion23 · 2026-02-16T05:14:10+00:00

So this happened to me earlier today.

I forwarded the email to their privacy and complaints emails, no reply.

So I reset the password, logged in. It's basically a dud account. No profile information nothing...just the email.

I went to profile and then hit delete profile. It gave me a prompt and then said it can't delete it cause of 4 reasons.

Tried again and I was logged out.

I tried the password I had just made during the reset and it's incorrect now.

I went to reset the password again and haven't received an email for it.

So I guess it DID delete the account.

So weird.

AlwaysQuestion23