Hotmail server hacked

stoneman

stoneman

stoneman

Associate
Joined
29 Aug 2010
Posts
33
thought id post this as a heads up,my hotmail was hacked.:eek:
microsoft hotmail severs were exploited a few days ago
accounts are blocked and when you try to
change your password the exploit kicks in. accounts
linked to paypal and banking sites maybe hit.
this exploit works with most browsers but not iexplorer (what ive heard)
so anyone with hotmail problems beware,cheers
 
The hotmail server hasnt been hacked at all, you would have to have your email specifically targetted to be hacked, so i wouldnt worry too much.
 
i wasnt hacked ,thought i was .couple of days ago tried to log into my hotmail account, message from hotmail said account blocked due to sending high
number of spam.option said try resetting password which i tried to do.thats where the xss attack happened.you send a request to homail server but because they are exploited they gain access to your email account,i was using firefox or srware browser at the time cant remember, as ive read it doesnt effect iexplorer (strange).i know plenty about 0day malware viruses etc but not this xss exploit.nothing gets on your pc its all through your broswer i think.
 
I find it hard to believe that this is true.

Microsoft would have issued some type of statement if so, as that's a major flaw. Also considering how long hotmail and the new live system has been around I'm sure the system is fairly solid.
 
stoneman said:
Did you use the first link i posted its from an excelent security forum not a playground.
Click to expand...

Zero mainstream media coverage. I'll wait for a proper source and explanation. :)

In the mean time, you should enable two-factor authentication. It might help prevent such an attack.
 
Paranoid much? A possible exploit on an external/third party website and you change the passwords on your local hardware?

Also, it would increase the credibility if you could type properly. This is not just a normal dig at your lack of typing skills, but I think if you were familiar with computers you would have at least mastered the shift key by now, and thus would be less likely to be the typical clueless Hotmail user who would enter login details into a phishing website.
 
stoneman said:
i wasnt hacked ,thought i was .couple of days ago tried to log into my hotmail account, message from hotmail said account blocked due to sending high
number of spam.option said try resetting password which i tried to do.thats where the xss attack happened.you send a request to homail server but because they are exploited they gain access to your email account,i was using firefox or srware browser at the time cant remember, as ive read it doesnt effect iexplorer (strange).i know plenty about 0day malware viruses etc but not this xss exploit.nothing gets on your pc its all through your broswer i think.
Click to expand...

I'm sorry but what aload of rubbish.
I think you miss understand what XSS is.

Anyway even if it's legit I wouldn't worry, you'd have to be specifically targeted.
 
at longbow,im a stone mason by trade so my spelling dont really matter much,
im normally polite when behind a keyboard,as its easy to mouth of to people
who you wouldnt do in the street, but your a mug mate:rolleyes:
 
stoneman said:
just incase i changed router, web site and login passwords
new email provider
and use keypass to enter passwords securely without typing.
Click to expand...

For someone who supposedly knows 'a lot' about 0Day exploits assuming not typing in your password directly will prevent any capture is pretty foolish.

Basically your account was compromised for what could have been numerous reasons/failures on your own part.

Chances of Hotmail servers being hacked - Slim to none.
 
You must log in or register to reply here.
Back
Top Bottom