This morning I got an email saying that there were 5 attempts to access my TTD account with the incorrect password so it was locked. Definitely not me.

Do I need to do anything? like notify the Mods, change my password, plan a DOS attack on that ip address it came from?

Thanks

Go for the DOS attack! :clap:

That is the software doing it's job. If an IP tried to login unsuccessfully five times, then they are locked out for 15 minutes. It isn't a big deal if you have a good password. Don't use your username as a password. I think this started after the release of those 10 million passwords.

http://techcrunch.com/2015/02/10/a-security-researcher-just-dumped-10-million-real-passwords/

I think this started after the release of those 10 million passwords.

http://techcrunch.com/2015/02/10/a-security-researcher-just-dumped-10-million-real-passwords/

i doubt it. all those password were old and had already been available. some of them for years. all this guy did was take them from other sites put them all together and re-release them as new.

But it was about one month ago that we started seeing all these bots trying to hack accounts. Some people never change their passwords and use the same one on several sites. So, they can get lucky.

That is the software doing it's job. If an IP tried to login unsuccessfully five times, then they are locked out for 15 minutes. It isn't a big deal if you have a good password. Don't use your username as a password. I think this started after the release of those 10 million passwords.

http://techcrunch.com/2015/02/10/a-security-researcher-just-dumped-10-million-real-passwords/

Thanks for the info, Lynne. I'm covered with a good password and all, just wondering. Do you usually block those source ip addresses in the future or is something like that not possible?

Thanks for the info, Lynne. I'm covered with a good password and all, just wondering. Do you usually block those source ip addresses in the future or is something like that not possible?
It isn't just one IP, or even a group of IPs. It is very hard to block an attack like this. I tried on a bigger site than this once and I was unsuccessful.