- Posts: 158
- Thank you received: 1
hacking
17 years 11 months ago #19094
by skylimit
"...you are never too old to learn" anon
Hi all, my yahoo mail box has been recently hacked. Basically, I noticed that my emails were read before i actually read them also an email i sent to a friend was forwarded to everyone on my contact list. I find it difficult to believe that the hacker knew my password because i use a password generator. Any responses as to how this could have been done and any preventive measure will be highly appreciated. thanks in advance.
"...you are never too old to learn" anon
17 years 11 months ago #19099
by Smurf
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
Replied by Smurf on topic Re: hacking
Firstly, i would run a serious of Spyware, Keyloggers & Trojan scanners to ensure that there is nothing on your systems. If your password's are very strong then this is one likely suspect.
If you find anything on your machine then ensure that all your key username/passwords for Internet Sites are changed immediatly.
Also, ensure that you don't fall for any of scams (Phishing) e-mails that will trick you into entering details on these sites. I know a few people who have been caught out by these, I got caught out by an eBay one a few years ago when they changed the method that they employed to trick people. Originally, they used to say that your account needed verifying which was easy to spot, they then changed to simulate a "Question for Seller" which caught me out (realised after 2 mins though and changed my password).
The general rule is to not click any links in e-mails, instead go to the actually website through your web browser then login to your account.
Cheers
If you find anything on your machine then ensure that all your key username/passwords for Internet Sites are changed immediatly.
Also, ensure that you don't fall for any of scams (Phishing) e-mails that will trick you into entering details on these sites. I know a few people who have been caught out by these, I got caught out by an eBay one a few years ago when they changed the method that they employed to trick people. Originally, they used to say that your account needed verifying which was easy to spot, they then changed to simulate a "Question for Seller" which caught me out (realised after 2 mins though and changed my password).
The general rule is to not click any links in e-mails, instead go to the actually website through your web browser then login to your account.
Cheers
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx
Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
17 years 11 months ago #19104
by Starfire
Replied by Starfire on topic Re: hacking
General rule is that once your email address has been compromised, get a new one. If they have got into your address book too then so should all your contacts. A known working email address is a saleable item these days.
First things first, clean up your PC using antispyware (make sure it's a on the level - (there are many rogue antispyware programs out there that remove competitors spyware only to fill your pc with their own) programs like the free Spybot www.safer-networking.org/ , cwshredder, hijackthis, spysweeper are known good ones.
However, one antispyware product typically isn't enough to do the job and can usually need a run through from each of the above in order to get your PC reasonably clean.
Getting yourself a good, top of the range antivirus product is pretty much essential these days. Norton, McAffe, Computer Associates. Don't think you are safe if you fall for one of these "Free" antivirus engines... With antivirus you get what you pay for!
At the end of the day, Smurf is spot on in his post (he is very clued up when it comes to security) it's how you use your PC on the internet that will stop this happening again. The internet these days is rife with serious criminal activity and you are just not safe or anonymous any more. You go to this site and that and how on earth are you to know the mind set or the true intent of the author.
First things first, clean up your PC using antispyware (make sure it's a on the level - (there are many rogue antispyware programs out there that remove competitors spyware only to fill your pc with their own) programs like the free Spybot www.safer-networking.org/ , cwshredder, hijackthis, spysweeper are known good ones.
However, one antispyware product typically isn't enough to do the job and can usually need a run through from each of the above in order to get your PC reasonably clean.
Getting yourself a good, top of the range antivirus product is pretty much essential these days. Norton, McAffe, Computer Associates. Don't think you are safe if you fall for one of these "Free" antivirus engines... With antivirus you get what you pay for!
At the end of the day, Smurf is spot on in his post (he is very clued up when it comes to security) it's how you use your PC on the internet that will stop this happening again. The internet these days is rife with serious criminal activity and you are just not safe or anonymous any more. You go to this site and that and how on earth are you to know the mind set or the true intent of the author.
Time to create page: 0.139 seconds