I enabled the notification for new device logins in PMS in the iOS app. Today I received 3 notifications.
But I didn’t sign in using Chrome.
Also there is no Chrome device listed in the “Devices List” in the WebGUI.
How is this possible? Had someone again access to my server?
You know that I changed the password only a few days ago and have 2FA enabled.
The latest posts were focusing on how they accessed to files after a valid sign in. There seems to be some work on it and hopefully fixes soon.
But how did they get the valid token / server access?
I think that his question is not finally answered, or?
