This is a bit of a weird one, I'll try and explain it clear as I can. If anyone can give me some advice, please do. I think I've secured everything now, but it was a bit of a freaky thing and I have some questions about the attack, including whether certain info I have may suggest who is responsible.
I got 2 'sign in from unrecognized device' emails today in my gmail mobile app. 1 from google, and 1 from facebook. The device was a Mac (which I don't have). The facebook message showed me the profile name and picture, which wasn't me. One of the messages said the location was in Ennis (where I don't live anywhere near).
I flagged both of the sign in attempts through the emails, clicking on the button that says 'this isn't me' or whatever.
Then, I noticed that these emails, which were in my inbox along with other ones I recognized, weren't actually addressed to my email address. They were addressed to an email nothing like mine, with no name in the address. it was a gmail address but the part before the @ was just a reference to a recently ended, wildly popular HBO TV show.
I also realized, which I had never noticed before, that I had a tab that said 'all inboxes' on the left of the gmail app, and when I tapped on it, I had more emails sent to this unfamiliar address. I was usually in 'primary' which just showed my ones, but it seemed I had been receiving emails that were sent to this other address for quite some time.
I didn't want to open any of them in case they were viruses, but I saw 2 from legit companies and I briefly opened them. One was a purchase order from an online retailer and another from a takeaway: each was addressed to a person with the same name as the facebook profile (a very uncommon name).
Thinking (naively) that this was just some weird glitch, I made a silly error: I emailed this strange address saying 'Hey, I got these weird sign in attempt messages and flagged them, and then realized I am getting your emails.' Like an idiot, I suggested someone had breached HIS data, not realizing I was the target, and suggested he take steps to secure his accounts. LMAO now that I was so blind, but anyway...