Good morning,

I confirm:

The same thing happened to me about 2 years ago and I did it the same way. Without needing to file a complaint, I heard no more about this threat.

Hello @Nitheugreuy12

If the advice from @Diablotin and @Prelude helped you, don’t hesitate to give them a like and accept their answer as a solution 🙂

Beautiful day

Good morning,

how do we know if someone has had access to our email account and our information?

In fact, people around me received an email with my name but from a posteo.de address.

Thank you for your help

@Reimmieckeuss53

Frequently asked questions - MELANI Checktool

What is the “Checktool”?**

You can use the MELANI checker tool to check if there is any particular risk associated with your email address and passwords. Online stores and other Internet services are sometimes hacked and associated customer data is extracted. If passwords are not well secured, criminals can obtain access data (email address and associated password for the hacked service). With this data, criminals then try to connect to a variety of other Internet services. If you use a password more than once, you will allow criminals to log in under your identity with some luck or persistence and abuse another service. Services that detect such login attempts may report these to MELANI and we include this data in the verification tool. In most cases, we are unable to determine which data leak the corresponding data came from or which passwords are affected. Checktool is not universal: Even if your email address is not listed in Checktool, a combination of password and email may have found its way to criminals.

MELANI Check Tool

Reporting and Analysis Center for Information Assurance MELANI / DBlast updated: 11th of September 2020 12:00 UTC

Protection against phishing Swisscom Help

- On this page: Find out what phishing is, if phishing emails are circulating right now, and what you can do if they do.- To learn how to detect a phishing email, visit Swisscom Magazin

- If in doubt about a URL address, you can check it using [URL Checker](https://www.swisscom.ch/fr/clients-prives/aide/internet/internetguard/url -checker.html) of the Swisscom Internet Guard. Please note, however, that a site is only considered dangerous if it has already been blocked or reported as a phishing page by other customers.

Example with URL Checker:

Your verified URL address:

posteo(dot)de > Not on the blacklist

I received a threatening message asking for money in bitcoin sent from and with my own email address.

After checking using MELANI, my address is among those that have been hacked.

I changed the password for my email address. Are there any other steps to take?

Good morning,

For security reasons, I would also recommend changing the Swisscom Login password (it should be changed regularly in any case).

You should know that it is not necessary to have access to the box to generate a message that appears to come from it.

Most importantly, refuse the display of content (related items), do not click on any links, and delete the message.

DanielD

@DanielD: Thank you very much for your wise advice…. which reassures me a little.

I have one more question:

From the MELANI site, they also advise changing all passwords linked to my hacked email address (for example my Google, Apple, Facebook account or any other purchasing site linked to my address, or my connection with the health fund etc…).

What do you say?

Because then I will have to spend quite a significant amount of time to change all the passwords.

Or would it be better if I delete my current email address and create a new one?

Good morning,

One question: did you put the same password on all sites? If so, it is imperative to change them all and put different ones for each site.

If not, I don’t think it’s necessary to change all passwords. But for security, it is a good idea to change your passwords from time to time, little by little. I would recommend that you change Google’s in any case because many passwords have been hacked there.

I know it’s very tedious to make these changes: I once opened a file despite my antivirus warning. And, a few days later, I discovered purchases on some of my accounts and various inconveniences, not to mention emm***. It took me a lot of effort and time to change all my passwords.

Here are my advice, let’s wait for DanielD’s.

Good evening,

@Prelude’s answer is appropriate. Never use the same password for multiple accesses and change these passwords periodically.

We can add a few more elements for security such as enabling double authentication where possible.

Another point is the use of several email addresses for different classes of service (official+financial, social networks, online businesses). If you use an email client it is not a problem to manage several addresses.

There are good password managers to help coordinate all of this.

DanielD

@Prélude and DanielD:

Thank you once again for your quick responses and advice.

I will follow them in this step (I have already started) and hope that it

there will be no follow-up to this malicious hacking against me.

With best wishes for 2021.

Thanks @Graummuzu74!

To you too Happy New Year 2021.

For information: several messages on this topic have been merged into this discussion.

Good morning,

I recently received an email which was sent with my own email address, which asks me to pay crypto and transfer them to him otherwise something blabla…

I therefore changed my password, my username and I also added 2FA, however these actions do not disconnect the accounts which have already logged in before.

Is there a way to disconnect all devices that are on my account

If not, do you have any other solutions?

@LucaHeiniger: This is probably a phishing email, what to do in this case can be found here (e.g. report as spam):

https://www.swisscom.ch/fr/clients-prives/aide/internet/phishing.html

I would delete the email and forget about it, there is no need to change password or disconnect devices, there is no point, even if one has to change password from time to time. But an A2F is already important.

But just because someone receives an email doesn’t mean they have access to personal data. Long lists of email addresses are sold by these charlatans. You must have come across such a list, it happens to everyone.

I also received this email…it had my password…

he asked me for money in bitcoins..

he also hacked my Facebook account and installed..

It seems easy to hack Bluewin addresses!

no solution from bluewin and no response..

he was even the one who signed up for the Swisscom community. And with another name….

in short, the mess…

@Patrrrrrrick Report these emails as spam, as described in the link. You have to understand that there are a lot of charlatans on the net, an e-mail provider cannot always react immediately. The more people who report these emails as spam, the faster these emails land in the spam filter.

Hello, luckily the swisscom service blocked my email address, I’m going to let it block for a while so that it forgets me and disconnects, since even changing the password does not disconnect the devices already connected to it…

@LucaHeiniger If the Bluewin mailbox was really used to send messages, you must change the password for this mailbox using the My Swisscom customer area. This will block access to all devices using this Bluewin service. However, it will always be possible to use another less strict SMTP service (unauthenticated) to pretend that the messages come from this email address (sender/reply to).

On the other hand, changing the Swisscom Login password used for Webmail will have no effect, because the hacker does not go through this path.

DanielD