Someone Has Entered My Cloudflare Account

nursentozan541 · November 20, 2023, 4:36pm

I got this email from Cloudflare and I am sure it wasn’t me who entered my account because I wasn’t active at the mentioned time. I just activated two factor authentication. But I am not sure whether this guy was expelled from my account. And is there more security steps I should do?

Hello,

Your security is very important to us. This email address was used to access the Cloudflare dashboard from a new IP address:

email: {REDACTED}
time: 2023-11-20 15:45:15 UTC
IP address: …(I deleted this)
browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15

If this was you, you can ignore this alert. If you noticed any suspicious activity on your account, please change your password and enable two-factor authentication on your account page at …

If you have any questions or concerns, you can also visit our Support portal at …

Thanks,

The Cloudflare Team

sjr · November 20, 2023, 4:40pm

You should change the password, 2FA is good but best to be safe.

You should check the audit log for any changes…
https://dash.cloudflare.com/?to=/:account/audit-log

…and change your API key and tokens since that user could make further changes using the API…
https://dash.cloudflare.com/profile/api-tokens

system · November 23, 2023, 5:33pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Someone Has Entered My Cloudflare Account

email: {REDACTED} time: 2023-11-20 15:45:15 UTC IP address: …(I deleted this) browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15

email: {REDACTED}
time: 2023-11-20 15:45:15 UTC
IP address: …(I deleted this)
browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15