Windows 10 will reach EOS (end of support) on October 14, 2025. For more information, see this article.

Avatar for Username

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

이 쓰레드는 보존되었습니다. 만약 도움이 필요하시면 새로운 질문을 올려주세요.

Log-in switching to another device?

  • 5 답장
  • 3 이 문제를 만남
  • 4 보기
  • 최종 답변자: hellmight

hellmight
hellmight
more options

Today I noticed something strange on my phone. I opened up my FF browser and noticed a small warning icon on the bottom right. It said, my sync was not logged in and I had to enter my password and 2FA code. After entering these - which I have done quite some time ago already, I immediately got the mail telling me about the new log-in on my account. I mean, I know that it was me, I just logged in. But it got me suspicious because my mobile should already be logged in! So I followed the 'manage devices' link to check the list of my logged-in devices. What I have found is disturbing me. My device was now two times in that list: One saying 'this device' and one stating it is located in another country (USA), last seen a couple of hours ago. I'm from Europe and I certainly have never been in the USA! Of course I removed access immediately!

Is this possibly a bug or even a security breach, that an attacker can 'transfer' a log-in token to another device without any notification? It seems like my mobile's token was removed and so I had to re-log in here. And yes, I use unique passwords with a password manager and 2FA. The only notification I ever saw on this was that my mobile no longer was logged into my sync account!

Today I noticed something strange on my phone. I opened up my FF browser and noticed a small warning icon on the bottom right. It said, my sync was not logged in and I had to enter my password and 2FA code. After entering these - which I have done quite some time ago already, I immediately got the mail telling me about the new log-in on my account. I mean, I know that it was me, I just logged in. But it got me suspicious because my mobile should already be logged in! So I followed the 'manage devices' link to check the list of my logged-in devices. What I have found is disturbing me. My device was now two times in that list: One saying 'this device' and one stating it is located in another country (USA), last seen a couple of hours ago. I'm from Europe and I certainly have never been in the USA! Of course I removed access immediately! Is this possibly a bug or even a security breach, that an attacker can 'transfer' a log-in token to another device without any notification? It seems like my mobile's token was removed and so I had to re-log in here. And yes, I use unique passwords with a password manager and 2FA. The only notification I ever saw on this was that my mobile no longer was logged into my sync account!

모든 댓글 (5)

jonwillcode
jonwillcode
more options

Do you use a VPN on your device? That could explain why Mozilla believed you were in a different country.

hellmight
hellmight 질문자
more options

No, I don't. I do use cloudflare (1.1.1.1) but that is not an actual VPN, merely a dns service.

hellmight
hellmight 질문자
more options

No, I do not. I use Cloudflare (1.1.1.1) but it is not a true VPN, just a dns service.

Paul
Paul
  • Top 10 Contributor
  • Moderator
more options

Hi

I believe that the Cloudflare server is in the US, which could explain what you are seeing.

hellmight
hellmight 질문자
more options

As far as I am aware, Cloudflare does not mask anything. It serves as a DNS Service which does nothing but translate a dns request into an ip-address.

But even if your suggestion was the reason for why my approximate location is so far off, there is still a question that is not answered: Why was my device logged off? Repeatedly.

I just had the same log-off thing re-occure, and a few days ago too. For some strange reason, my latest confirmation mail said that I was logging in from Seattle. (I use Cloudflare for quite some time now, long before this has started.)