#MyGov #AccountSecurity #CyberSecurity #StaySafe
Oh no, not another hack attempt on my MyGov account! 😬 It seems like these cyber attacks are becoming more and more common these days. Has anyone else experienced something similar recently?
Here are a few tips that might help keep your account safe:
– Enable two-factor authentication 🔒
– Use a strong, unique password
– Be cautious of phishing emails and links
– Regularly monitor your account for suspicious activity
I hope these suggestions help! Stay safe online everyone! 💻🛡️
I promise it wasn’t me.
Since I am so considerate, though, perhaps you’d consider rewarding me by voluntarily tranferring your super to me?
Same happened to me not long ago. Changed everything, they see it’s tax return time and probably tryna crawl their way into ATO that’s linked like the slime they are
Unlock account, reset password, go into sign on settings and remove your email address as a username. You can use the username mygov sets that no one else should know about
Yeah I’ve been hit twice in two days. Pesky little buggers they are.
Same thing happened to me just a few minutes ago. I have since removed that e-mail as a login option.
I’m thinking it’s because I was an Optus customer or I was using an old heavily pwned email. I switched off email as a login name and signed up for Mygovid which they confirmed over the phone was the most secure way to protect my account. Don’t want my super drained, or tax returns amended.
Just logged in to check mine, noticed they now have a passwordless option – so have turned my password off and setup a passkey using my password manager.
I woke up this morning with a text message login code from someone attempting to log in, and then a corresponding email saying I’ve logged in from a new device both just before 2am.
I’ve pulled my finger out and gone passwordless
Happened to me today too!
Feels like there’s an unreported data leak at the moment with this happening to so many people.
There is easy cash to be made in someones myGov account around tax time.
If they get in, they lodge your tax return and change the account for the refund. Potentially every account broken into is a $500-2500 especially if they know what to “claim” as a tax deduction.
Had the same thing. They completely locked my account. I had to re link everything and it was a complete pain in the ass.
Check your bank account details bro – my dad’s one got changed to a bank account under his name but one he wasn’t aware of.
There is definitely something going on – someone has been trying to access my account for 2-3 days. Seems like they are trying to brute force guessing passwords, maybe using a previously leaked password but changing a few numbers and letters hoping you are someone who uses +1/-1 on different websites?
Same. Reset everything…have been meaning to do it for ages….I have an email that only gets used for government and banking (and has several levels of security….login then encryption) that I’ve finally shifted it over to.
Between all the hacks of the last year, pretty much every Australian has their email address in a database.
Somebody trying to brute force their way into your account isn’t hacking – it’s just annoying. This kind of thing happens to my Apple ID regularly.
The Ticketmaster release was the latest big breach.
Look the fact is a lot of people use the same email and password login for multiple websites.
If it gets leaked even once, by one site, bam all your logins are compromised.
Go to https://haveibeenpwned.com/ put in your email address and see if it’s been part of any data breaches, if you are using different passwords this doesn’t matter too much just change the password of the impacted sites.
Alternatively you can check if your password has been leaked as well via that website.
It is secure, it’s run by an Aussie. You can also request you get notified if your email(s) have been detected in a breach.
99% of the time it’s you using the same email password combo.
Stop it.
As for 2FA breaches that’s a little bit different.
I didn’t realize it, but at some point mygov had added my email address as a alternative logon name – I disabled that today.
Check: My Account -> Account Settings -> Sign in settings -> Username [Manage] -> Additional usernames
Your email address and passwords used on, and leaked, from other sites will be what they are attempting to get in with, it is automated, and anyone unfortunately unaware enough not to use the same logon/password combos are in danger, especially in 2FA has not been setup/active (if that’s even allowed).
Begs q why do they insist on using a email address as I’d it’s easiest way to hack somebody
I was issued with a couple of letters then few numbers get a code on phone enter that no issues so far
I got hit 9 times before myGov locked the account and sent me an email
I had my mygov account suddenly closed because I supposedly hadn’t logged in for (I think) a year.. which was absolute bullshit since I log in at least once a month to read mail they send me.
I couldn’t re-sign up with the same email. They just said tough shit we closed your account permanently. I had to sign up again using mygovid, which I also had to setup first as well. Then re-link all the services.
It was a complete pain in the ass..
Same thing has been happening to me since yesterday 🫠
Doesn’t everyone have 2FA set up on myGov?
Just use digital identity to login to mygov then login to ATO.