Phishing attempt ?

Is an email notification of a 1P Safari extension sign in legitimate? Or a phishing attempt? It said we signed in from a different location from where we live and at a time we were not on our devices. I checked the list and found 2 other odd logins from different locations than where we live....or were in the last month. The rest were for our location. What do you advise?


1Password Version: 8.10.23
Extension Version: 2.18.2
OS Version: Sonoma 14.2.1
Browser: Safari

Comments

  • Hello @jcminnesota! 👋

    1Password will notify you when you sign into a new browser, so receiving an email notification is normal if you've added your 1Password account to a new browser or cleared your cookies/history in an existing browser recently.

    It said we signed in from a different location from where we live and at a time we were not on our devices. I checked the list and found 2 other odd logins from different locations than where we live....or were in the last month.

    Geolocation as provided in 1Password is a "best-effort" service. There are a number of factors that can affect the accuracy of geolocation of IP addresses, including but definitely not limited to: your use of a VPN, whether you're on a Wi-Fi network that's correctly identified as emanating from the physical location of the router (instead of the ISP's home that owns the IP address), and whether you're on a local network or a carrier's (mobile) network. In addition, IP location lookup services are notoriously inaccurate, sometimes showing entirely different countries, if not just different parts of a country one is actually in.

    Are you using a VPN or Apple's Private Relay? That could affect the location being shown.

    -Dave

This discussion has been closed.