Yahoo email account hacked - HotUKDeals
We use cookie files to improve site functionality and personalisation. By continuing to use HUKD, you accept our cookie and privacy policy.
Get the HUKD app free at Google Play

Search Error

An error occurred when searching, please try again!

Login / Sign UpSubmit

Yahoo email account hacked

drspa44 Avatar
6y, 5m agoPosted 6 years, 5 months ago
Got home today to find that my primary email address had been hacked presumably with brute force and used to send a web address 'medshealthworld.net' to my address book and everyone I've ever emailed. They then emptied my sent folder (which is no big loss, as I mostly use a client to send mail).

My password was not that easy for a brute force attack to obtain. It was 11 characters made up of two words and a 2 digit number at the end: for example timesound66 (not exactly this obviously!)

I'm making this thread as basically just a warning to people that whilst you should NEVER protect any web identity with a single word or name (eg. apple, James), even a password like timesound66 is a target.

Another thing to mention: this person, or rather bot, could have emptied the £7 in my Paypal acc and made a purchase if he'd tried my password and email with Paypal. Probably my fault for reusing passwords, so I changed both immediately.
Other Links From Yahoo:
drspa44 Avatar
6y, 5m agoPosted 6 years, 5 months ago
Options

All Comments

(15) Jump to unreadPost a comment
Comments/page:
#1
dont think it will have been "hacked" as such,you maybe opened and email that hijacked your address book? I got the medshealth email from a friend who is on yahoo as well-pretty sure they havent actually got your password-just a worm/virus that has got your address book
#2
Strangely my gmail account was as well today, it sent 2 emails to a bunch of people in my contact list then gmail blocked my account until I had to re enable it and change password.

My password is strong with a mix of letters and numbers, no viruses either
#3
I have received a strange email off Fern from here.................one of them "Oh I have to tell you about this fabulous website, great prices, totally secure" yada yada. Think she is on holiday but its definitely not a normal email
#4
I hav just checked my msn mail (I dont normally use that for my general emails) and have just had a strange email from faevilangel ! Its obviously not him thats sent it. Looking at the address list its all been sent to lynds and a few others
#5
I have been getting "password recovery" emails the past few months for my Gmail.
#6
barky
dont think it will have been "hacked" as such,you maybe opened and email that hijacked your address book? I got the medshealth email from a friend who is on yahoo as well-pretty sure they havent actually got your password-just a worm/virus that has got your address book

I don't think that could exist. An email cannot execute code afaik, only its attachments. The only non-webmail clients I use are Mail for Mac OS X and the mail client on my iPhone. These couldn't have been compromised.

I'm not sure how many emails were sent, but I'm guessing onee as I've only received one round of 'Mail Delivery Notifications' from dead addresses.
banned#7
brute force ? did they threaten to shot if you didnt give your email password ?
#8
I left yahoo as it was frequently abused in this way. My brother's also and neither of us open dodgy attachments. I have never had any problems with windows live though.
#9
What was your point about passwords though? Mine are all one word with digits extraneous punctuation and random capitalisation. Is this good? What is not good is that it's pretty much the same password for ALL applications. From the bank to email to Asda and Ebay, NAUGHTY I know, but I can't remember more than one! I tried with a different one just for paypal and got properly screwed up.
#10
Something happened on my aol account it sent out a email to everyone in my address book with a virus link. Anyone had this before with their aol account?
#11
I have had my hotmail account hacked twice in the last few weeks lol :)

Each time by someone that is either Chinese or can speak the language.

Infact it is hacked at the minute, waiting on live support giving me back access (Next few hours)

Here is a screen shot, security question is 第一个宠物的名字 (what is your pets name)

http://img.photobucket.com/albums/v138/MarkInIreland/Untitled-7.jpg


I can confirm that Wi Jac Russell is the wrong answer :)
#12
ryman1000
brute force ? did they threaten to shot if you didnt give your email password ?
a brute force attack is when the hacker uses software that tries hundreds of thousands of possible passwords until it is successful. They'll use a dictionary and probably a bank of common passwords (eg. 123456). What throws me is that my password has four different objects in it - two unknown words and two unknown numbers. Assuming a limited dictionary with only about 50000 words, there are about 202 billion combinations.
#13
dcx_badass
Happened to my dads hotmail last week when he was away, anyway I reckon that they hacked a forum or sites database and just tried the passwords against the registered email address.

I'm starting to think that's the most likely, but I've always tried to keep this password and my primary email address off the sites I don't trust completely.


Penny Saver
What was your point about passwords though? Mine are all one word with digits extraneous punctuation and random capitalisation. Is this good? What is not good is that it's pretty much the same password for ALL applications. From the bank to email to Asda and Ebay, NAUGHTY I know, but I can't remember more than one! I tried with a different one just for paypal and got properly screwed up.

My point is basically a warning that even if your password is long and complex, it is still susceptible to attack. I would have always thought that using punctuation is a step too far, but perhaps it is necessary nowadays. I've found that many websites won't accept punctuation or spaces, which is annoying especially if you reuse passwords. Your password sounds good, but I'd recommend having a separate one (can be simple, mine is commonly something like aaaaa) for untrustworthy websites like small forums or mailing lists.
#14
Just a thought as this seems to be widespread.

Are you registered on Piratebay?
#15
Sorry BB...both my hotmail and yahoo accounts had this happen to them this week!!! I only realised when i got some 'failed delivery notices' back! Hardly anything in my sent folder. A friend told me this is happening more and more. I ran virus checker and anti malware but it showed nothing!! I've been advised to change my passwords regularly. Have got a small A-Z book to write them all in and will hide the book somewhere safe. My memory is crap.

Post a Comment

You don't need an account to leave a comment. Just enter your email address. We'll keep it private.

...OR log in with your social account

...OR comment using your social account

Thanks for your comment! Keep it up!
We just need to have a quick look and it will be live soon.
The community is happy to hear your opinion! Keep contributing!