Readers like you help support MUO. When you make a purchase using links on our site, we may earn an affiliate commission. Read More.
Is changing passwords for a hacked webservice a guaranteed way to reclaim a user's account?
2014-05-30 10:00:56
No. Resetting the password on its own gives your control over the account again,
but
the hacker could have already noted down your additional security information (date of birth etc and security questions), and may well pretend to have "forgotten the password" and regain access to it again. The information could also be used to help gain access to other accounts, so hacking one account is really just the start of a long journey... If you want to truly protect your account, you should:
- Change some of your security information and
- Set up two factor authentication, which will prevent the hacker from logging on even if they have all your details.
2014-06-11 17:11:27
I understand
2014-05-30 04:20:49
Is it true that delay in resetting increases chances of user information hacked?
2014-05-30 00:27:14
The only thing that guarantees is that the password is changed. You still don't know what information the hacker(s) got.
2014-05-30 16:39:39
thanks. true