We are always talking security and stuff.
My Google Home started playing music by itself around 4AM this morning, thought that was weird and probably just a glitch. I woke up to an email from Spotify saying the I had changed my email and password, sure enough I was locked out of my Spotify account. I could still get in through Facebook to see what the email was changed to and it was some shet stain out of Kenya that did the dirty on my account. A quick chat session with Spotify CS and everything was put back to rights.
The little bastich had added himself to the family account and made a ton of playlists in the few hours he had access. No idea how he managed to get a password reset email or if he just brute forced it. The password was quite simple when I initially set up the account, to be changed once everything was up and running on all devices.
The CS rep couldn't (or wouldn't) tell me how it was done either.
I was highly PO'ed at this little incident, I couldn't even begin to imagine what a full identity theft would be like.
Found out that (Google) doesn't care if accounts on their system are used for illegal activities or not as there is no way to report things like this. I also thought about sending this guy in Kenya a few nasty messages from a burner Gmail account but that would just put me on his radar for a full on attack...
Then I get a call from the Hindu "Virus" people during supper, he was promptly told he was just a liar, a thief and a scammer.
