One of my clients has seen uptick in failed llogin attempts. They're coming from IP addresses all over the world but seemed to start in Budapest Romania. It appears someone may have obtained a list of LogMeIn userIDs (or email addresses) but doesn't have the passwords. Is anyone else seeing this? Any theories?
We've taken the following defensive measures in LogMeIn:
Settings > Account Settings, > Password > Change
Settings > Account Settings > Security section:
o Audit Log > View: Check for suspicious activity
o Email Notifications > Change: Confirm email address Enable (check) all checkboxes.
o Two Step Verification: Switch On
o Trusted Devices > View Devices to check for unknown devices
Settings > Security > Enable all the Audit Settings checkboxes.
We understand your concerns and would like to confirm that no breach took place on our end. Log in testing based on password reuse is usually connected with third party data leaks and security incidents.
You can also set up Two-Step Verification by logging into your account and following this path: Settings> Account settings> Security> Switch on two-step verification and follow the steps to pair an app or receive a text message.
M_LMI is a member of the LogMeIn Community Care Team.
Was your question answered? Please mark it as an Accepted Solution.
Was a post helpful or informative? Give it a star with the Kudos button.
We have had 2 failed attempts on 2 different users in the last week (one from the Philippines and one from Korea). Would you explain your statement of "password reuse is usually connected with third party data leaks and security incidents" in more detail?
We have not had any security breaches on our system (fortunately) and I'm not clear what third party would have access to our Logmein user accounts.