I’ve already done all of those things. Trust me, its things they could only know through email.
Some of it is things I put in to get them to reveal it. And they did.
At what point did you change your password? The date should be in the Recent Activity list.
So I have some good concrete evidence that they broke into my email, and I’m working with a forensic computer guy who is helping me get more.
I’m wondering what the penalties are for breaking into someone else’s email?
It varies, but it can get pretty severe depending on how the hack was accomplished. You’ll have to ask a lawyer who’s licensed in your state (or the state where you want to file charges.)
Does anyone know anything about this company
I’m trying to decide what to do.
Did you change passwords and enable 2 step verification?
Yes I did.
At what point did you first do that, after suspecting a problem? The date is in Recent Activity.
What would I do with that information?
I am going to file a police report. I don’t know if I should file in my city or theirs or both.
I believe what he is getting at is was the most recent information relayed to you information that coud only have been recieved by logging into google with the 2 step authenticator. The only way to do that would be with physical access to your computer and the authentication app or things like a cloned phone sim.
Where is the authenticator? Phone? Computer?
There is no way in hell they are brute forcing the 2 step authentication. Googles management would be holding public executions in the courtyard if there was a way for anyone, especially a non-techy type person to do this.
Oh that’s not what I meant. I was looking in old emails and found the one that led them to the contact information for my HR. There wasn’t a new episode, just more confirmation of where they got the idea and how they got the info.
The police are unlikely to get involved unless they’re investigating some other crime.
What I’m getting at is, did you change your password and/or enable 2-step when you first suspected a problem (“months and months ago”), or only later when you started the thread? That’s one of the first questions any lawyer or investigator will ask. If it was the latter, I think you’ll find it’s far more difficult to get a satisfactory result.