We are seeing a global increase in incidents involving compromised user accounts across online platforms.

Unauthorised access to accounts is often the result of exposed or weak credentials rather than platform vulnerabilities.

Common ways user accounts may be compromised include:

  • Reuse of passwords across multiple websites or services
  • Phishing emails or fake login pages capturing user credentials
  • Downloading malicious software or browser extensions
  • Use of weak or easily guessable passwords
  • Exposure of credentials from breaches on other platforms

Gevme implements safeguards to protect user accounts against brute force attacks and other common security threats, including protections aligned with industry standards such as the OWASP Top 10.

In addition, Gevme provides enterprise-grade security controls that users and organisations can leverage:

  • Enforced two-factor authentication (2FA)
  • Session management and automatic session expiry
  • Password expiry
  • Visibility into active or logged-in devices

Users are advised to take the following precautions to protect their accounts:

  • Use strong, unique passwords that are not reused across services
  • Enable two-factor authentication where available
  • Verify the authenticity of login pages before entering credentials
  • Avoid clicking on suspicious links or downloading untrusted files
  • Regularly review active sessions and logged-in devices
  • Update passwords immediately if suspicious activity is detected

If you suspect unauthorised access to your account, reset your password immediately and notify your organisation’s administrator.

For further guidance on how to secure your Gevme account, refer to the following articles: