Hackers trying my BF account

ps1967 · Mon Oct 29, 2018 4:53 pm

A few days ago I noticed in the security log an IP address from Brazil had tried to get into my betfair account. Then noticed this morning an IP from Indonesia has had a failed login too. I have 2FA setup.

Is this common for the rest of you guys? Should I request a new username from betfair?

pythonic · Mon Oct 29, 2018 5:26 pm

A few failed attempts now and then are normal IMO. With 2 factor setup especially you should be save. If you run a VPS you might get thousands of failed ssh login attempts per day.

ps1967 · Mon Oct 29, 2018 6:54 pm

pythonic wrote: ↑
Mon Oct 29, 2018 5:26 pm
A few failed attempts now and then are normal IMO. With 2 factor setup especially you should be save. If you run a VPS you might get thousands of failed ssh login attempts per day.

Had 4 failed logins in total today already, I don't run a VPS.

Edit: If you want to check yourselves go to My account>my details>security settings there is a list of login attempts.

Euler · Mon Oct 29, 2018 7:09 pm

ps1967 wrote: ↑
Mon Oct 29, 2018 4:53 pm
A few days ago I noticed in the security log an IP address from Brazil had tried to get into my betfair account. Then noticed this morning an IP from Indonesia has had a failed login too. I have 2FA setup.

Is this common for the rest of you guys? Should I request a new username from betfair?

I'd request a new username from Betfair, just to be safe.

PDC · Tue Oct 30, 2018 12:38 pm

pythonic wrote: ↑
Mon Oct 29, 2018 5:26 pm
A few failed attempts now and then are normal IMO. With 2 factor setup especially you should be save. If you run a VPS you might get thousands of failed ssh login attempts per day.

Three questions, why is it normal to have failed attempts now and then?

Why does a VPS mean you get thousands of failed login attempts per day?

What is a ssh login?

LinusP · Tue Oct 30, 2018 2:23 pm

PDC wrote: ↑
Tue Oct 30, 2018 12:38 pm

pythonic wrote: ↑
Mon Oct 29, 2018 5:26 pm
A few failed attempts now and then are normal IMO. With 2 factor setup especially you should be save. If you run a VPS you might get thousands of failed ssh login attempts per day.
Three questions, why is it normal to have failed attempts now and then?

Why does a VPS mean you get thousands of failed login attempts per day?

What is a ssh login?

My experience is that it is not normal and your username is compromised.

When it comes to SSH (we are now not talking about betfair), lots of bot nets will look for open ports (22) and try and ssh using default usernames/passwords. Assuming you are using SSH keys for Auth you don’t need to worry.

pythonic · Wed Oct 31, 2018 12:17 pm

I have a few failed login attempts at my BF account now and then, but less then ten per year.
Maybe it depends on your username.
If you get constant attempts then I would agree that this is suspicious and you should request a new login name (and also maybe think about why an attacker would know your username).
Other measures are a strong password and / or two factor authentification.

If it is just one attempt every other month then it is probably just someone randomly trying out username / password combinations.
But in this case I agree that the attempts are too frequent for random guessing.

Jukebox · Wed Oct 31, 2018 12:23 pm

Sometimes a failed attempt might be your own - ie when Caps Loc or Num Lock accidently on or off or you got a couple of digits round the wrong way

Emmson · Thu Nov 01, 2018 1:45 am

I haven't changed my password in 5 years but I do employ 2 Step Authentication.

mandymoozle · Thu Nov 01, 2018 8:52 am

I had my account hacked and a few losing bets made which cleaned it out (only 500 pounds) a couple of months ago. betfair actually refunded the money which was appreciated. the bit i didnt quite understand is what betfair do with the people on the other side of of my losing bets who are obviously in on it. i have kept my username but started using two factor authentication

Derek27 · Thu Nov 01, 2018 8:35 pm

mandymoozle wrote: ↑
Thu Nov 01, 2018 8:52 am
I had my account hacked and a few losing bets made which cleaned it out (only 500 pounds) a couple of months ago. betfair actually refunded the money which was appreciated. the bit i didnt quite understand is what betfair do with the people on the other side of of my losing bets who are obviously in on it. i have kept my username but started using two factor authentication

That's something I'd love to know. It should be easy for them to gather evidence with IP addresses of the hackers and the account information of the account the money was effectively transferred to.

invisiblelayer · Thu Nov 01, 2018 9:28 pm

Anyone hacked or tried to be hacked had login via email turned on? I'd imagine that's where most hackers would gain access.

ShaunWhite · Thu Nov 01, 2018 11:18 pm

Derek27 wrote: ↑
Thu Nov 01, 2018 8:35 pm
That's something I'd love to know. It should be easy for them to gather evidence with IP addresses of the hackers and the account information of the account the money was effectively transferred to.

It's easy to spoof your IP and fake accounts can be set up using stolen information. It's not easy to catch them, it's why so many people do it.

Derek27 · Fri Nov 02, 2018 12:03 am

Surely bank accounts registered with Betfair have to be in the name of the account holder, and usually you can't withdraw money until you've passed the KYC checks?

It's certainly difficult for a genuine user to open an account, deposit funds and withdraw them legitimately!

Derek27 · Fri Nov 02, 2018 4:23 pm

Most bookies no longer offer introductory free bets to people who deposit using Skrill or Neteller due the abuse.

Hackers trying my BF account

Login • Register