Gatehub asks to authorize new device on every login

[xh3b4sd]

Hello folks, 

I just noticed a super annoying/worrying behaviour when logging into Gatehub. Check the attachment. I get an email and have to confirm the link I received. The first time this was ok. Now I see it every time I log in. Is this on purpose? Is there a bug? Is this a phishing mechanism from an attacker? On my end all looks good but I am still worried. Please provide some information and background. 

 

All the best, Tim.

[Eik]

Same here.

@enej?

[Mercury]

Gatehub does whenever a 'new device' is used. If a browser is refreshed or if your using a privacy focused (history deleted every time a browser shuts down such as Firefox) you will get this. Its a intended security feature

 

[nik]

I get the same message every now and then and I am fine with it. Safety first!

[Scrypto215]

Definitely a safety net I believe. I don't mind the added security. I have everything 2FA as well, which is also a pain in the a** but worth it.

 

[Parabellum]

I have the same issue, seems like it is quite common reading the comments here. 

[corak]

Getting the same thing. Somewhat annoying. I added 2FA thinking it might solve this problem but no. Now I have to use my password, authenticator and exchange emails for every single login attempt.

[xh3b4sd]

The thing is that this behaviour is new since 1-2 days. Before I just used my password and MFA. When this is a feature, it would have been cool to know about its activation so users do not get confused. I like the additional security step. It is only the information/communication part that is then missing for me personally. 

[xh3b4sd]

And yeah, I did not do anything special to my machine or browser. As I perceive it it is only that the behaviour on the Gatehub side changed. 

[Veteralist]

Think of it as a positive. If they get your phone and password, they still have to hack your email.(unless they steal your computer too but then you kinda have it coming) That will at least buy you some time to shut it down.

[Mazza]

yeah good spot xh3b4sd, I have started noticing this is happening on my existing devices on the same ip address. Previously this used to only pop up on any device using a new ip address, existing or not (which I can confirm was not have it was behaving 3+ days ago).

Don't have any answers just can confirm your observation.

Maybe an email to their support will help or @enej can explain. I've seen him on here a number of times.

Keep safe and keep looking at those patterns

[cap]

I agree with Veteralist.  It's not like it takes any time/effort to click on an email and adds extra security.

[CNFlinch]

I wholeheartedly support @enej and the additional security feature.  Actually, I'm kinda thrilled about it.

[Ozzy]

It has been this way for a long time now.  Nothing new.

 

[wiredless1]

I agree that this is a bother. Still, sometimes a bother is a good thing.

Today's VPN isn't yesterdays; tunneling changes; attacks morph; theft isn't immediate. This layer of gate-keeping isn't convenient but until the internets become cold wallet ecosystems (an oxymoron, it seems), I sigh and say it's worth the extra step. Too many "experts in the field" still get compromised by better experts in the ether. Besides, if this layer keeps the lazy away, good for us.