Could my Mac be compromised?

[Sadioga]

I had new gmail account I used only once to make account in another forum. And today I got this:

We've detected unusual activity on the account you're trying to access. To continue, please follow the instructions below.

Provide a phone number to continue. We'll send a verification code you can use to sign in.


I don't have a phone I'd give out like this so no testing it. Could this be sign my Mac is infected and someone got to my Gmail account through stealing password? Or if other accounts (my main old Gmail) are not touched, it was just google being stupid?

 

[keysofanxiety]

Check where the sender was from. Sometimes they can spoof legitimate addresses but more often than not, they'll be called something like legitgooglesupport@trustme.com. It could well be a phishing email.

Otherwise you can login to your Google account normally through the browser and see if you get any warnings that way. If you don't, it was phishing. If you do, then it wasn't, but always go through the browser if you're unsure.

 

[Sadioga]

Check where the sender was from. Sometimes they can spoof legitimate addresses but more often than not, they'll be called something like legitgooglesupport@trustme.com. It could well be a phishing email.

Otherwise you can login to your Google account normally through the browser and see if you get any warnings that way. If you don't, it was phishing. If you do, then it wasn't, but always go through the browser if you're unsure.

Actually, I can't log in - it gives me that message right when trying to get in through browser:

On another note, I misclicked and landed on site I don't use. How likely it is to get infected just by accidentally opening a site? (Sorry, Windows background makes nervous)
I think in this case it was osxdaily.com but I quickly ran from there.

 

[chrfr]

Actually, I can't log in - it gives me that message right when trying to get in through browser:

On another note, I misclicked and landed on site I don't use. How likely it is to get infected just by accidentally opening a site? (Sorry, Windows background makes nervous)
I think in this case it was osxdaily.com but I quickly ran from there.

The concern isn't that your computer got infected, but rather that you might have been "phished" and entered your Google credentials on a site that wasn't Google. If you go manually to the Gmail site (do not click any links to do so) and get the above prompt for a phone number, you should follow their procedures, and it would be better to not delay in doing so.

 

[Sadioga]

The concern isn't that your computer got infected, but rather that you might have been "phished" and entered your Google credentials on a site that wasn't Google. If you go manually to the Gmail site (do not click any links to do so) and get the above prompt for a phone number, you should follow their procedures, and it would be better to not delay in doing so.

So only my gmail account would be compromised, not my Mac?
It is rather weird, because I only use my google credentials on Gmail and every time I log in, it always provides me with my mail account - would phising scheme somehow get my credentials so easily if my usage of those is limited?

 

[chrfr]

So only my gmail account would be compromised, not my Mac?
It is rather weird, because I only use my google credentials on Gmail and every time I log in, it always provides me with my mail account - would phising scheme somehow get my credentials so easily if my usage of those is limited?

OSXDaily.com doesn't seem in any way suspicious so I wouldn't expect your computer got compromised.
You need to log in and configure 2-factor authentication for your account. Once you're in the account, you can see details of locations where the account was accessed. You may be getting prompted for the additional information for no good reason, or perhaps someone is trying to guess your password. Having 2-factor authentication will make it so that someone who has your password still cannot access your account. You just need to start by getting signed into the account.
Instructions of how to set up 2-factor authentication are here: https://support.google.com/accounts/answer/185839?hl=en

 

[Sadioga]

You need to log in and configure 2-factor authentication for your account. Once you're in the account, you can see details of locations where the account was accessed. You may be getting prompted for the additional information for no good reason, or perhaps someone is trying to guess your password. Having 2-factor authentication will make it so that someone who has your password still cannot access your account. You just need to start by getting signed into the account.
Instructions of how to set up 2-factor authentication are here: https://support.google.com/accounts/answer/185839?hl=en

To sum it up:
1) When gmail says suspicious stuff is going on, it is just my account that may be in danger and not my Mac? (I checked my main gmail account and that was normal)
2) Gmail might go and ask me this for no real reason?
3) Use 2 factor and someone outsider getting in is pretty much zero?

 

[chrfr]

To sum it up:
1) When gmail says suspicious stuff is going on, it is just my account that may be in danger and not my Mac? (I checked my main gmail account and that was normal)
2) Gmail might go and ask me this for no real reason?
3) Use 2 factor and someone outsider getting in is pretty much zero?

All correct.

 

[Sadioga]

All correct.

Thank you! For last, if I have such accidents where I click on some add or link accidentally (in this case I was looking for google image about Mac keyboards) and it throws me somewhere, how likely could I get infected if I leave the site immediately and clear browser cookies and history?

 

[chrfr]

Thank you! For last, if I have such accidents where I click on some add or link accidentally (in this case I was looking for google image about Mac keyboards) and it throws me somewhere, how likely could I get infected if I leave the site immediately and clear browser cookies and history?

Browser cookies and history have no affect on whether or not a computer will get infected with some sort of malware. Keep your browsers and operating system up to date, and pay attention to where you're clicking, and you'll be fine.

 

[Sadioga]

Browser cookies and history have no affect on whether or not a computer will get infected with some sort of malware. Keep your browsers and operating system up to date, and pay attention to where you're clicking, and you'll be fine.

I do keep everything up to date. But if such thing does happen accidentally, just hope for the best because it's unlikely? If I don't agree to any windows that might pop up and such?