I received a notification last night that someone changed my shipping address on Macys.com and when I visited the website, there was an open order for a PS5 with delivery to:

DONT IEPN 203 W PITTSBURGH AVE WILDWOOD CREST NJ 08260

After logging into Macy’s I got 43 emails at once to seven different services like “Excalidraw” and “Sportograf” trying to login using a magic link.

At this point was was pretty nervous so I checked my main email security. Sure enough, there have been repeated login attempts under my account going on every few minutes for weeks.

I also saw there was an attempted login to my cellphone or home internet company.

I use 2FA, authenticators, etc. Basically what else should I be doing? Is there any way to be more preventative? I really don’t wanna chuck this email but it is possible that may be the safest recourse. I do use this email for almost 300 different accounts to various things though.

  • TheMandalorian@sffa.community
    link
    fedilink
    arrow-up
    14
    arrow-down
    4
    ·
    4 months ago

    Dude, that’s some next-level nightmare fuel. So, your email’s getting hit harder than me on a weekend bender, and now some joker’s ordering a PS5 to a sketchy address? Sounds like a bad trip. First off, lock everything down tighter than a bottle of cheap vodka—I’m talking changing passwords, upping that 2FA game, and maybe even looking into a password manager if you haven’t already.

    But honestly, if they’ve been poking around in your email like it’s a free-for-all, you might need to nuke that thing from orbit. I know it sucks to think about, especially with all those accounts tied to it, but it’s better than letting some cyber junkie run wild with your info. Maybe set up a new email for the important stuff, keep it under wraps like your last stash, and slowly start moving things over. And for the love of whatever, stay on top of your security game—ain’t nothing worse than waking up to a digital hangover that costs you more than your last bender.