1. Forum
  2. >
  3. Topic: Troubleshooting
  4. >
  5. My account was hacked

https://www.duolingo.com/profile/VinnyT8

My account was hacked

Hello everyone, I'm pretty sure my account got hacked. The hacker set a rather disturbing description on my profile and followed a bunch of people, I'm pretty sure that's all was done. I have no idea how they got into my account and I'm wondering if anyone else is having this problem too.

October 7, 2019

14 Comments

Sorted by top post

https://www.duolingo.com/profile/Thomas.Heiss

Yes, there are multiple users who run into that problem; also on Memrise.

Abuse report: https://support.duolingo.com/hc/en-us/requests/new

I am not sure how they can directly help you.

Only thing you can personally do is change your password and clear the bio field in your settings.

I am not sure if you can force a 100% logout on ALL devices on duolingo.com (clear your login cockie sessions) after you have changed your password.

Maybe their abuse team can help you further which for sure stands in direct contact with 3rd level administrators / backend developers.

October 7, 2019

https://www.duolingo.com/profile/VinnyT8

Thank you, I emailed the support team and deleted cookies. I’ll see if that prevents anything

October 7, 2019

https://www.duolingo.com/profile/Thomas.Heiss

@VinnyT8

Quote: I deleted cookies.

I did not mean YOUR browser cookies but the login session cookies which are hold and may be still valid on their server(s).

If a hacker is still logged into your account on another device it may not be enough that YOU log out on your side.

As I said, I have no idea if Duolingo developers do invalide all cookies and terminate ALL sessions (for ALL devices) once you have changed your password and re-login.

You may want to ask this staff directly in the ticket.

October 7, 2019

https://www.duolingo.com/profile/VinnyT8

When I changed my password it logged me off my phone so I’m guessing if my account was logged in somewhere else, it’s logged off. What I still don’t know is how someone got into my account in the first place

October 7, 2019

https://www.duolingo.com/profile/Scutigera

With an easy password it's pretty easy for bots to hack into accounts and post Spam. That's why your account bot followed so many people because lots of people get email notifications when someone "friends" them and so these people (hopefully from the spam producer's side) look at the profile to see who likes them so much and then they see the malicious link. Basically free advertising.

Well the original article is not available for some reason but the google cache copy still is:

https://webcache.googleusercontent.com/search?q=cache:xICfZl6qtxgJ:https://www.scientificamerican.com/article/the-mathematics-of-hacking-passwords/+&cd=15&hl=en&ct=clnk&gl=pt&client=safari

It's quite interesting.

But you might want to change all your passwords now, including for your email accounts and so on.

October 7, 2019

https://www.duolingo.com/profile/VinnyT8

That’s a very helpful article, thank you for that

October 7, 2019

https://www.duolingo.com/profile/vivisaurus

Hello Vinny!

This is the standard answer we usually share with people who suspect someone else used their account:

1) Were you using a password that you use on other services (email, shopping sites, twitter, facebook, etc?). 2) Were you in a Duolingo for Schools classroom with a teacher you do not know? 3) Did you log in to Duolingo on a shared computer or device and forgot to log out?

Most importantly, have you changed your Duolingo password? If not, you should first make sure you have a valid email address (double check that it is indeed yours and wasn't changed by the prankster) on your Duolingo account, and please change your password now.

Remember: make sure the new password is something tricky (not your birthday or the word "password") and unique to Duolingo (a password you don't use on other apps and websites).

October 8, 2019

https://www.duolingo.com/profile/VinnyT8

I definitely changed my password, hopefully that fixes things

October 8, 2019

https://www.duolingo.com/profile/miaou-meow

though, the most interesting question is WHY

October 7, 2019

https://www.duolingo.com/profile/VinnyT8

Why what? Why my account was hacked?

October 7, 2019

https://www.duolingo.com/profile/miaou-meow

yeah, it's truly mysterious to me why would anyone want to hack a duolingo account :)

October 7, 2019

https://www.duolingo.com/profile/VinnyT8

Yeah, I’m just as confused as you. I don’t see any reason to hack an account other than soliciting scams lol

October 7, 2019

https://www.duolingo.com/profile/John12457

So that they can advertise.

October 10, 2019

https://www.duolingo.com/profile/VinnyT8

True

October 10, 2019
Learn a language in just 5 minutes a day. For free.