I just received two emails from Slashdot that someone was trying to use my username to login.
After giving me a new password and telling me to change it to something I'll remember, the email said the following:
If you have received this message without having requested it, it is because someone attempted to use your username or e-mail address. It was mostly likely an innocent mistake, and they are not getting your password, so you can safely disregard this message.
In case you get multiple emails you didn't request, the requester's IP was 220.127.116.11. Its user agent was "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; IEMB3; IE"(not that you should trust that value, but it might be interesting). In case that's a properly-configured proxy, the value of its X-Forwarded-For header was "18.104.22.168" -- but don't trust that value unless you know a reason to (we don't).
If this was you, please comment and explain. Maybe we have a similar name or something.