To moderators: Suspicious login verification

N

norway

Well-known member
In the last few days I have received unsolicited login verification codes (two-step verification setup). I am just wondering if anyone else have seen the same?

I am not reusing my passwords across web sites, so it is highly unlikely that someone is using a stolen password, unless they got it from the dvxuser database itself.

I would also like to thank the moderators of the dvxuser for their hard work keeping this site running!
 
Two separate but related things going on...

(1) Those codes have been appearing once a month from DVXuser after the site was updated a while back, there's a thread about them here somewhere.

(2) Safari (Apple) has been telling me for a while that there was a DVXuser "data leak" with passwords but IDK anything about it and never asked.

So, related but different; although there may be stolen/leaked passwords out there somewhere, the two-step verification codes are from DVXuser (at least the normal ones we've all been getting for a few months now).
 
Thanks, NorBro! I wasn't aware of (1), as I thought we would get the 2FA codes only when logging in. As for (2) I will change my password again and see if that helps.
 
Yes, you’ll get 2-step verification requests every 30 days (per device you use to visit the site). The discussion thread NorBro mentioned:

Why is 2 Step Verification Now Required?

Trying to log in today and I get a message that I have to turn on 2 step verification to continue. This is, frankly, a royal pain in the rear. If this is some sort of hack, please let me know. Otherwise I request that you allow us to log in as always without having to put in an additional code...
www.dvxuser.com

If you’re receiving login verification codes when you haven’t attempted to log in for some time, I don’t know. A password change may help.
 
Alex H. said:
Yes, you’ll get 2-step verification requests every 30 days (per device you use to visit the site). The discussion thread NorBro mentioned:

Why is 2 Step Verification Now Required?

Trying to log in today and I get a message that I have to turn on 2 step verification to continue. This is, frankly, a royal pain in the rear. If this is some sort of hack, please let me know. Otherwise I request that you allow us to log in as always without having to put in an additional code...
www.dvxuser.com

If you’re receiving login verification codes when you haven’t attempted to log in for some time, I don’t know. A password change may help.
Click to expand...
If it is per device, that makes sense. I got two notifications in one day, and thought it was somebody trying to log in as me multiple times.
 
norway said:
If it is per device, that makes sense. I got two notifications in one day, and thought it was somebody trying to log in as me multiple times.
Click to expand...

I’m always asked if I want to “trust this device for 30 days”. It asks individually for my iPad, MacBook, and Mac Studio.
 
As a principle, I think the site shouldn't share a secret token (the two-factor authentication code) without the user specifically requesting it. Wouldn't it be possible to change the email to just say something along the lines of "The trusted login for your device has expired" instead?
 
That is odd behavior. The site doesn't just send verification codes even if you're past your 30 days for 2SV.
 
David Jimerson said:
Not sure, without seeing exactly what you got.
Click to expand...

Email Subject: DVXuser.com - Login verification

Email Body:
To complete the login to your account (or to complete two-step verification setup) at DVXuser.com, you must enter the following code:

XXXXXX

This code is valid for 15 minutes.

The login was requested via the IP XXX.XXX.XXX.XXX. If you did not initiate this request, you should change your password urgently.

I did not try to log in at the time I received these emails. (I received two.)
 
norway said:
Email Subject: DVXuser.com - Login verification

Email Body:
To complete the login to your account (or to complete two-step verification setup) at DVXuser.com, you must enter the following code:

XXXXXX

This code is valid for 15 minutes.

The login was requested via the IP XXX.XXX.XXX.XXX. If you did not initiate this request, you should change your password urgently.

I did not try to log in at the time I received these emails. (I received two.)
Click to expand...

Yes, change your password immediately. And, if you don’t mind, please message David and/or me with the IP address that attempted to log in. Thanks,
 
Alex H. said:
Yes, change your password immediately. And, if you don’t mind, please message David and/or me with the IP address that attempted to log in. Thanks,
Click to expand...
Already done, but I am using a password manager to ensure that each login is using a unique password.
 
norway said:
Email Subject: DVXuser.com - Login verification

Email Body:
To complete the login to your account (or to complete two-step verification setup) at DVXuser.com, you must enter the following code:

XXXXXX

This code is valid for 15 minutes.

The login was requested via the IP XXX.XXX.XXX.XXX. If you did not initiate this request, you should change your password urgently.

I did not try to log in at the time I received these emails. (I received two.)
Click to expand...

Yep, suspicious activity is exactly what that e-mail is for.
 
You must log in or register to reply here.
Back
Top