My Yahoo email hacked

derk · 8 Mar 2013 at 13:14

#Chri5# said:
Where do you find the "recent login" screen in Yahoo?

Start up Yahoo mail.

Hover over your user icon top right.

Choose account info.

Then under 'Sign in & Security' check recent login activity.

You can also create a 'sign in seal' here too.

arknor · 8 Mar 2013 at 13:16

RoyMi6 said:
On a positive note it's possible your email hasn't been hacked at all.

Bounces like you're seeing are sent to the "from" address which can be spoofed.

A spammer my just be using your email as a known "safe sender" to help get through spam filters.

However, changing your passwords and taking extra precautions is still a very good idea!

EDIT: Oh no, ignore me - you've got logins from Turkey. Could be failed attempts mind you... might not have actually got in... but not by those descriptions on the activity

i've been getting them for ages on an old email account that I have not put the password or username into for well over 2 years it's just setup in my thunderbird client

I'm convinced they aren't legitimately sent from my account so just ignore them

no viruses or anything either

ic1male · 8 Mar 2013 at 14:58

Yes, I had the same. Login from Turkey. So I closed the account and now use Google Mail with two-step verification.

sbi5ar · 8 Mar 2013 at 15:26

estebanrey said:
You've already failed standard computer security if you are using the same password in more than one location anyway.

I have a mental system with various inputs based on the website I'm on, run a simple algorithm in my head and hey presto a unique password for every website and nothing else to remember but the system itself and no password manager.

So for example you could have something like this...

1) First three letters of your username
2) Day and Month of birth backwards
3) First three letters of website in capitals
4) number of letters in website
5) Website extension (.co.uk, .com etc) backwards

So for this site my password would be 'est2002OVE12kuoc'.

BY THE WAY THE ABOVE IS AN EXAMPLE OF A POSSIBLE SYSTEM, MY SYSTEM IS DIFFERENT TO THE ONE I SUGGESTED BEFORE YOU TRY HACKING ME LOL!

I do something very similar, took a while to 'learn' but its all good now...

Judgeneo · 8 Mar 2013 at 15:27

estebanrey said:
BY THE WAY THE ABOVE IS AN EXAMPLE OF A POSSIBLE SYSTEM, MY SYSTEM IS DIFFERENT TO THE ONE I SUGGESTED BEFORE YOU TRY HACKING ME LOL!

*shifty eyes*

derk · 8 Mar 2013 at 16:13

Right, made my mind up as a friend has just checked their yahoo email and they have the Turkish intrusion too, gmail here I come.

This is going to be a lot of work, 10 years on yahoo

Destination · 8 Mar 2013 at 16:15

sbi5ar said:
I do something very similar, took a while to 'learn' but its all good now...

Same here for most things, password string with an added start and end specific to the website, standard string had large and small letters numbers and symbols.
Yet some sites I dilike as they allow max of twelve characters, like national lottery webiste, doen't tell you its max twelve, it just trunkates your entry to twelve.

derk · 8 Mar 2013 at 16:30

There is a lot of talk about passwords, which is ok, but I am pretty sure this isn't the issue here (at least for me).
Someone has found a hole somewhere and you can be sure they will be sharing that info with other *******.
The question now is how far has this gone and can/will yahoo sort it out.
They really need to make a public announcement, this is peoples private information.

Robbo · 8 Mar 2013 at 16:38

Hacked by a Turk on an iPhone.

There is no greater shame.

Homer-Simpson · 8 Mar 2013 at 17:41

The XSS flaw was (apparently) fixed earlier this year but a number of people have suggested it wasn't, below is probably what happened to you

http://www.theregister.co.uk/2013/03/08/yahoo_webmail_hijack_flare_on/

azibux1 · 8 Mar 2013 at 17:57

#Chri5# said:
My O/H had her Yahoo e-mail done this week. I got a couple of random messages from her yesterday. Digging through the SMTP headers lead me to an IP in Vietnam which is flagged by a few honeypots.

Where do you find the "recent login" screen in Yahoo?

Very similar/identical thing happened to my Mum ... I just investigated and that was from Vietnam too

derk · 8 Mar 2013 at 18:06

Homer-Simpson said:
The XSS flaw was (apparently) fixed earlier this year but a number of people have suggested it wasn't, below is probably what happened to you

http://www.theregister.co.uk/2013/03/08/yahoo_webmail_hijack_flare_on/

Thats very interesting and has just reminded me that I installed the mobile app on my android phone 2 weeks ago - deleted.

azibux1 · 8 Mar 2013 at 18:45

When this happened to my Mum recently (as mentioned above) ... About 1 week before I also downloaded Yahoo mail app for my Android tablet ... Could have been related

Energize · 9 Mar 2013 at 00:45

I've seen the same thing with gmail accounts, possibly just spoofing though.

Philtor · 9 Mar 2013 at 00:51

KIA said:
Gmail with two-step authentication.

It really is this simple.

derk · 9 Mar 2013 at 01:19

Energize said:
I've seen the same thing with gmail accounts, possibly just spoofing though.

Oh no, I just started changing over! :eek:

Originally Posted by KIA View Post
Gmail with two-step authentication.

Philtor said:
It really is this simple.

Thank god for that :rolleyes:

manic111 · 9 Mar 2013 at 01:37

Mine was hacked twice. Gave up and went to GMail.

MissChief · 9 Mar 2013 at 01:59

Wow, just found this on my Sky Email myself:

SMTP Israel (109.64.185.13) 14:23 (11 hours ago)

password changed already.

flibbage0 · 9 Mar 2013 at 02:07

My Yahoo mail account was also hacked last week, accessed from Brazil.

http://www.telegraph.co.uk/technolo...vestigates-spike-in-Yahoo-email-spamming.html

Interesting, wonder if anything comes of this.

Philtor · 9 Mar 2013 at 02:09

MissChief said:
Wow, just found this on my Sky Email myself:

SMTP Israel (109.64.185.13) 14:23 (11 hours ago)

password changed already.

People still use email addy's that their ISP provide?