14 replies to this topic

[Sasha]

I am wondering if other people are having their yahoo account being hacked all the time
I change my password serveral times during the day and still get mail sent to me by
my account. The e-mails seem to come from Russian area of the world.
Any idea's to stop this would help!

[Griffin]

Don't ever open any email if you don't know who it is from. You need to run a good antivirus or run several to clean out whatever has infected your computer.

Downloads for Windows:
http://download.cnet.com/windows/

Cnet has dozens of quality antivirus programs for free.

[AlanMexicali]

You have to change your password and your secret question at the same time or the hacker can get your password easily, again, I think.

[lcscats]

Folks if you have to use free email use Google and get off Yahoo and Hotmail. They are not secure
and I believe they don't have the staff to secure things properly.

[hensley]

I just attended a class on e-mail security and you should have at least 10 characters, capital letter, small letters, numbers and symbols. Also your security question should be a phrase like, I like to travel to Mexico, not just 1 word or your favorite pets name, you could choose favorite pet and then the answer is, I like to travel to Mexico.

This should be the same for other accounts, do not have the same password and question on simple accounts like facebook and your bank or e-mail accounts.

[sparks]

>>>> The e-mails seem to come from Russian area of the world

I assume you are looking at the expanded headers of the message to determine that

Most likely your account has not been hacked. They can fake an origin of an email account.

[HelperGuy]

I'd like everyone to be aware that it won't matter how difficult and lengthy your password is; the hackers are not cracking it, they are retrieving it by using keystroke recording software that actually records your typing. There is software to help prevent this, but it's not something the Average Joe or Jill may want to deal with. And there is no substantive evidence to show that there are not other ways of getting a password, including spyware that is actually embedded on webpages you might visit.

Also, in many cases, your account may not have been hacked. Usually when that happens, they change your password. They also change your secret question, as noted by others, and the smarter ones will also add a fake secondary email, so that every time you change your account, they are notified and can change it again to serve their own purposes. No, your email address has probably just been lifted from a list that is sold and resold around the world. As Sparks points out, the spammers are simply faking the address so it looks like it came from your account.

[johanson]

As was said " As Sparks points out, the spammers are simply faking the address so it looks like it came from your account." That's what happened to my Yahoo email account. But I was overdue changing my password, so I did that too,

[vetteforron]

I got hit twice. From Finland and Brazil. I downloaded a spyware program and found a trojen. Plus changed my password.

[HelperGuy]

It's sad but true that if you install any new anti-spyware program, it is probably going to find something on your PC. The majority of these will be false-positives, but the general nervousness generated by these findings is enough to keep the antivirus programs selling like hotcakes.

[Mad_Max]

>>>> The e-mails seem to come from Russian area of the world

I assume you are looking at the expanded headers of the message to determine that

Most likely your account has not been hacked. They can fake an origin of an email account.

I don't know that I have received any emails where they have faked an origin. Instead, it appears that the emails are sent to everyone in that person's address book. I just checked the header of one of the please-send-money - and it looks like it is from the US. (Granted, it doesn't mean their PC was compromised - could have been someone on their address list -)


Received: from nm35-vm3.bullet.mail.bf1.yahoo.com (nm35-vm3.bullet.mail.bf1.yahoo.com. [72.30.238.75])
by mx.google.com with SMTP id gh9si6075309qab.100.2012.04.27.17.50.23;
Fri, 27 Apr 2012 17:50:23 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of arcoiris2@yahoo.com designates 72.30.238.75 as permitted sender) client-ip=72.30.238.75;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of arcoiris2@yahoo.com designates 72.30.238.75 as permitted sender) smtp.mail=arcoiris2@yahoo.com; dkim=pass (test mode) header.i=@yahoo.com
Received: from [98.139.215.141] by nm35.bullet.mail.bf1.yahoo.com with NNFMP; 28 Apr 2012 00:50:09 -0000
Received: from [98.139.212.197] by tm12.bullet.mail.bf1.yahoo.com with NNFMP; 28 Apr 2012 00:50:09 -0000
Received: from [127.0.0.1] by omp1006.mail.bf1.yahoo.com with NNFMP; 28 Apr 2012 00:50:09 -0000

[vetteforron]

It's sad but true that if you install any new anti-spyware program, it is probably going to find something on your PC. The majority of these will be false-positives, but the general nervousness generated by these findings is enough to keep the antivirus programs selling like hotcakes.

What I downloaded was super antispy or something like that. I have run it a few times and only has found tracking stuff. It was free. All I know I have not had any of my emails returned from friends telling me I had a virus.

I do know a little about key loggers. There are sites which will give free key loggers locaters.

[Griffin]

You can look up an IP address on several sites:

http://www.whatismyi...ress-lookup.asp

[HelperGuy]

Here's a quote from Wikipedia on fake email addresses:

Email spoofing is email activity in which the sender address and other parts of the email header are altered to appear as though the email originated from a different source. Because core SMTP doesn't provide any authentication, it is easy to impersonate and forge emails.^[1]
Although there are legitimate uses, these techniques are also commonly used in spam and phishing emails to hide the origin of the email message.^[2]
By changing^{[clarification needed]} certain properties of the email, such as the From, Return-Path and Reply-To fields (which can be found in the message header), ill-intentioned users can make the email appear to be from someone other than the actual sender. The result is that, although the email appears to come from the address indicated in the From field (found in the email headers), it actually comes from another source.^[3]

[borderreiver]

It's simple. Loose Yahoo. Hopefully, in the not to far future, they will generally announce - "we are secure". A troubled company. Why do they not spend the $ to securitize their system. I would suggest that internally, there is no will. too much infighting, too much bs.