I think that a security token would be the most hassle-free way to go. Logging in from multiple very different sources is probably tripping up some security, and making it think that you've been hacked. It is really doing exactly what it is supposed to be doing. If you're not comfortable with the app (why?), then activate the token you have at home and stick it on your key-ring.