Password Scam Widens To Google, Yahoo

Discussion in 'General Discussion' started by Kat, Oct 6, 2009.

  1. Kat
    Offline

    Kat Diamond Member Gold Supporting Member Supporting Member

    Joined:
    Aug 10, 2008
    Messages:
    25,734
    Thanks Received:
    14,729
    Trophy Points:
    1,445
    Location:
    Sweet Home Alabama
    Ratings:
    +20,515
    The scale of the phishing attack on Hotmail could stretch further than first thought, with accounts on Google and Yahoo now threatened.

    Microsoft confirmed on Monday that the popular email site had been the target of a scam which tricked users into revealing their passwords. This led to around 10,000 passwords being posted online.

    The computer company said their servers were not responsible for the security breach and that individuals had been conned into handing over their details. But it has been reported that more lists have also been circulated with genuine account information relating to email on Google, Yahoo, Comcast and Earthlink, as well as other third-party web mail services.

    Neil O'Neil, an ethical hacker and digital forensics investigator at secure payments specialist The Logic Group, said up to a million passwords could have been accessed.

    "Making the breach public so soon after the attack occurred has allowed unethical hackers to access the passwords very easily, even though they were deleted a couple of days ago at the request of Microsoft," he explained.

    "People tend to have the same password across many accounts — so there is a good chance that individuals have also compromised the integrity of their ebay or paypal accounts too.

    "The list went through A and B, so you would think whoever released these has more. And if you do the maths, they could have more than a million



    LINK
     
  2. KittenKoder
    Offline

    KittenKoder Senior Member

    Joined:
    Sep 21, 2008
    Messages:
    23,281
    Thanks Received:
    1,711
    Trophy Points:
    48
    Location:
    Nowhere
    Ratings:
    +1,714
    Note to internet users (who don't already know):

    Look at where you enter the password, only enter it in official pages (make sure the URL address is correct not just look at the site). Never send them via email, even if the company asks (most do not ask in email as a precaution).

    As a side note: Damn, can't use this as an example of Microsucks fucking up this time. :lol:
     
  3. xotoxi
    Offline

    xotoxi Platinum Member

    Joined:
    Mar 1, 2009
    Messages:
    30,322
    Thanks Received:
    5,203
    Trophy Points:
    1,110
    Location:
    your mother
    Ratings:
    +5,492

    :eusa_think: *DAMN! They're on to me!
    Now I'm going to have to redouble my efforts to prevent from being caught!* :eusa_think:
     
  4. PLYMCO_PILGRIM
    Offline

    PLYMCO_PILGRIM Gold Member

    Joined:
    Jul 3, 2009
    Messages:
    17,416
    Thanks Received:
    2,855
    Trophy Points:
    183
    Location:
    America's Home Town
    Ratings:
    +2,863
    In addition to KK's password advice i'd like to add my own.

    NEVER, EVER, EVER, share your password with ANYONE who asks for it online....EVER.
     
  5. xotoxi
    Offline

    xotoxi Platinum Member

    Joined:
    Mar 1, 2009
    Messages:
    30,322
    Thanks Received:
    5,203
    Trophy Points:
    1,110
    Location:
    your mother
    Ratings:
    +5,492
    Everytime I receive an email with links in it (such as from a company like ebay or Medscape or something else to which I am subscribed), I will always mouseover the links before I click them.

    There have been many times that I've received emails with links only to find that following the links will lead to porn or another unsavory website.

    Additionally, spammers have created an ingenious way of bypassing email spam blockers...they use your own email address as their return address.
     
  6. Luissa
    Offline

    Luissa Annoying Customer Supporting Member

    Joined:
    Sep 7, 2008
    Messages:
    43,190
    Thanks Received:
    5,593
    Trophy Points:
    1,785
    Location:
    TARDIS
    Ratings:
    +5,664
    last time i logged onto yahoo, it asked me to give my cell phone number and some other info in case I forgot my password. Do you think that was a scam? I didn't feel it out, I am little sensitive because my myspace got hacked once.
     
  7. KittenKoder
    Offline

    KittenKoder Senior Member

    Joined:
    Sep 21, 2008
    Messages:
    23,281
    Thanks Received:
    1,711
    Trophy Points:
    48
    Location:
    Nowhere
    Ratings:
    +1,714
    It's not an illegal scam, but Yahoo gathers that info to sell to advertisers sometimes so I wouldn't. I stopped going there a long time ago, Google is the only service I use, and all the co-op sites with Google (Picassoweb, Youtube, etc.).
     
  8. Luissa
    Offline

    Luissa Annoying Customer Supporting Member

    Joined:
    Sep 7, 2008
    Messages:
    43,190
    Thanks Received:
    5,593
    Trophy Points:
    1,785
    Location:
    TARDIS
    Ratings:
    +5,664
    I have had that email for four years now, I only keep it because I have some old friends that only know that address. :)
     
  9. Ringel05
    Offline

    Ringel05 Diamond Member

    Joined:
    Aug 5, 2009
    Messages:
    40,316
    Thanks Received:
    8,024
    Trophy Points:
    2,030
    Location:
    El Paso, TX
    Ratings:
    +17,471
    If anyone asks for password I give them this one - gophucurself96
     
    • Thank You! Thank You! x 1
  10. RodISHI
    Offline

    RodISHI Gold Member

    Joined:
    Nov 29, 2008
    Messages:
    10,392
    Thanks Received:
    1,858
    Trophy Points:
    280
    Ratings:
    +5,047
    Give them an odd number on forms that require such numbers. I use zero's or one's or the # for information (area code) 555-1212 when I do not want to give my real phone number out
     

Share This Page