This topic

Re: Hacked email and password change - Bypassed 2 factor authentication

noddy1 — Fri, 23 Aug 2024 09:19:39 GMT

Hi,

This is happening to me over and over again, they keep getting in bypassing any 2FA requirements, I've been pulling my hair our constantly resetting my account, I changed my BT ID from my email, and now I don't even get notified when they update the email address password.

BT are an absolute joke for such a large technology company, they have no idea about security!

Re: Hacked email and password change - Bypassed 2 factor authentication

Leanne_T — Fri, 23 Aug 2024 11:32:28 GMT

Hi @noddy1

I am sorry you're details are being changed.

Do you have an alternative email address registered for your BT ID?

Have you reported this to our Broadband team to get looked into?

Leanne.

Re: Hacked email and password change - Bypassed 2 factor authentication

gg30340 — Fri, 23 Aug 2024 13:03:03 GMT

@noddy1

I have moved you onto your own thread so that you get answers regarding your problem and not confused with OP of the other thread you posted on.

Re: Hacked email and password change - Bypassed 2 factor authentication

noddy1 — Fri, 23 Aug 2024 13:20:23 GMT

I have spoked to BT probably nearly 15 times over the last couple of months! nobody can tell me why it keeps happening, your internals clearly know there is an issue as many support staff say they know about an issue.

BT are unable to offer any additional security for a flaw in their 2FA system, I mean if people can bypass any security and change a password, they have a major issue, either internally or with your system!

before you say it, it has nothing to do with my systems, they are all protected by Firewalls, malware and virus scanners (Both separate and leading technologies).

i have waster so many hours of my time and it's actually causing me stress-related illnesses, I have been with BT for over 10 years so half my life is secured with the email, so many days of work to undo it all.

But looks like I have no choice but to finally move provider!

Re: Hacked email and password change - Bypassed 2 factor authentication

gg30340 — Fri, 23 Aug 2024 13:26:49 GMT

How many devices do you use to access your email account?

Do you have any "Password Manager" programs on your device?

Do you use an email client or a web browser to access your email?

Do you use a VPN?

Do you use anything such as "Mail Washer" on your device(s)?

Re: Hacked email and password change - Bypassed 2 factor authentication

noddy1 — Fri, 23 Aug 2024 14:25:40 GMT

I have 3 devices, all with mallwarescanner and norton, I haven't got a VPN anymore, but that is not how they are getting in even if I didn't, because they can change my Pword without ever sending a PIN or using 2FA, so it's some BS bypass they have somehow, nowt to do with a hack as I can't even change my own pWord with receiving a PIN first

Yes I have passwordvaults, if they were able to access them then I would have major issue, but that is defo not the case! just my BT mail

Re: Hacked email and password change - Bypassed 2 factor authentication

gg30340 — Fri, 23 Aug 2024 16:15:17 GMT

The questions were asked not to find out how you were hacked they were asked to see if you had been hacked.

Just because you have been locked out of your account does not necessarily mean you have been hacked.

How do you know that your account has been hacked and not just locked until you change your password for some reason?

It could simply be that your account has been locked because the BT servers suspect that somebody or some thing has been attempting unauthorised access your account.

I note that you are not using one but for instance using a VPN can be seen as such because it uses IP addresses from various places around the world some of which can be black listed.

Using multiple devices that are all set to poll for email at the same period can be seen as multiple attempts to access the email account especially if the devices are not in the same place and if using a blacklisted IP address.

It could be that somebody with a similar email address with just one digit different has been trying to change their password and has been mistakenly using the wrong email address and that would cause your account to be locked.

Re: Hacked email and password change - Bypassed 2 factor authentication

noddy1 — Fri, 23 Aug 2024 16:58:15 GMT

The fact that someone added an auto forward rule to my email tells you a lot!

noy sure who you work for, but your barking up the wrong tree fella.

I keep getting hacked and BT is the blame for their novice security measures!

Re: Hacked email and password change - Bypassed 2 factor authentication

gg30340 — Fri, 23 Aug 2024 17:24:06 GMT

@noddy1 wrote:

The fact that someone added an auto forward rule to my email tells you a lot!
That is the first time you mentioned that! I don't have a crystal ball.

noy sure who you work for, but your barking up the wrong tree fella.
What has who I work for got to do with you. I will say however I do not nor have I ever worked for BT or EE

I keep getting hacked and BT is the blame for their novice security measures!

If you say so! I'll leave you to it.

Re: Hacked email and password change - Bypassed 2 factor authentication

noddy1 — Fri, 23 Aug 2024 17:30:18 GMT

No need to angry bro, I’m the one on the end of a hack when they have managed to try and changed password for financial accounts..

it’s BT’s fault for implementing sub par security

Re: Hacked email and password change - Bypassed 2 factor authentication

harveysprimrose2012 — Sat, 24 Aug 2024 15:19:53 GMT

If you scroll down the list of community messages, BT's failure with 2FA seems to be a VERY common theme and it seems most customers have same issues and concerns over BT's unsophisticated security platform.

Our "MY BT" Account was compromised a month ago. A scammer fooled BT using online Chat and providing answers to very simple security questions (easily found on Electoral role or more likely already on Internet) such as DoB, last 4 digits of bank account, BT acct No etc. Our account and email was compromised, emails download and we had a £2k fraudulent transaction on credit card. Luckily, being in IT Security, I was able to shut things down quickly - once I'd found out I'd been hacked.

I recreated what the scammer/hacker did and using a friends MY BT account, I was able to answer 4 simple security questions and change the mobile number and ID. I was never challenged with 2FA.

I've told BT their 2FA is not working, 3 or 4 times. I've asked them why the scammer was not challenged with 2FA at time of changing our ID and mobile number. I'm waiting for the answer. In the meantime, I record once a week when I log on to see if 2FA prompt's - it doesn't. I record changing passwords to see if 2FA prompt's - it doesn't.

Another tread implies BT have a new 2FA (from Feb 2024) which "is risk based and uses several factors to decide when to make a 2FA prompt". So I've tried clearing all history and cookies and using different browsers. No 2FA prompt. I've tried different computers - no 2FA prompt. So I got a friend 100 miles away to log onto our MT BT Account - no 2FA prompt. I got another friend to log on to our MY BT account via his mobile, ensuring wifi was turned off - still no 2FA prompt.

It is shameful of BT. They seem to be in complete denial. They have 25 million consumer customers. All at risk because the BT 2FA does not work.