Ask HN: How could someone have guessed my LendingClub password?
I used 1Password and my LendingClub account has a 40 character randomly generated alphanumeric password. I do not reuse passwords. This evening I received a "one-time" code with login details saying someone attempted to login.
Login Details
We noticed a login attempt from the following device and location.
Location: Ashburn, VA
Browser: Chrome
IP: 52.5.126.46
How could someone have guessed such a password?
5 comments
[ 6.5 ms ] story [ 27.5 ms ] threadLogin = Successful login
you having logged on a different computer where your password was recorded,
your password being stored in ram and accessed by a malware,
your 1Password account being violated,
LendingClub had a data leak and they do not hash their passwords
You gave your password up in a phishing attack
I’m sure there are more that I haven’t thought of.