Digital Spy

Search Digital Spy
 

DS Forums

 
 

Yahoo Mail Accounts currently being hacked


Reply
Thread Tools Search this Thread
Old 07-03-2013, 08:23
heiker
Forum Member
 
Join Date: Jun 2012
Posts: 3,284

I know of three Yahoo Mail Accounts that have been hacked in the last couple of days. If you've got a Yahoo Account then change your password to something really complicated.
heiker is offline   Reply With Quote
Please sign in or register to remove this advertisement.
Old 07-03-2013, 08:42
psionic
Forum Member
 
Join Date: May 2002
Location: Crystal Palace TX
Posts: 18,851
Quite a few mentioning problems with BTyahoo mail lately. http://forums.digitalspy.co.uk/showthread.php?t=1803444
psionic is offline Follow this poster on Twitter   Reply With Quote
Old 07-03-2013, 09:03
heiker
Forum Member
 
Join Date: Jun 2012
Posts: 3,284
Quite a few mentioning problems with BTyahoo mail lately. http://forums.digitalspy.co.uk/showthread.php?t=1803444
Just googled "Yahoo Hacking". Looks like this has been going on for months. Checked my Yahoo Login Activity, my hacker based in Thailand.....I've even got the bastard's IP Address
heiker is offline   Reply With Quote
Old 07-03-2013, 09:16
albertd
Forum Member
 
Join Date: Apr 2005
Location: Crawley, W. Sussex
Posts: 7,321
....my hacker based in Thailand.....I've even got the bastard's IP Address
It is quite possible that the user in Thailand doesn't even know that their IP is being used as they are very probably a victim of a hacking attack themselves and their computer is being used by the hackers.
albertd is offline   Reply With Quote
Old 07-03-2013, 09:20
chrisjr
Forum Member
 
Join Date: May 2004
Location: Reading
Posts: 21,496
It is quite possible that the user in Thailand doesn't even know that their IP is being used as they are very probably a victim of a hacking attack themselves and their computer is being used by the hackers.
Or the hacker is sitting in a bedsit in Slough and using a proxy server in Thailand to hide his activities. Plenty of ways to hide where you really are if you have the knowledge.
chrisjr is offline   Reply With Quote
Old 07-03-2013, 09:46
heiker
Forum Member
 
Join Date: Jun 2012
Posts: 3,284
Looks like this problem is down to the fact that Yahoo left the back door wide open. Spoke to someone this morning who was hacked last night and they confirmed that they were using a long complicated password for their Yahoo Account.
heiker is offline   Reply With Quote
Old 07-03-2013, 13:25
hxbro
Forum Member
 
Join Date: Nov 2000
Posts: 2,114
I'm getting lots of spam from yahoo accounts
hxbro is offline   Reply With Quote
Old 07-03-2013, 13:42
koantemplation
Forum Member
 
Join Date: Oct 2002
Location: Wolf359
Posts: 77,258
A friend's yahoo account was hacked, they only found out when I told them I had a spam email from them.
koantemplation is offline   Reply With Quote
Old 07-03-2013, 13:51
flagpole
Inactive Member
 
Join Date: Jan 2003
Posts: 43,524
it's more likely to be the password reset procedure that is at issue than the password.

there is no point having a long complicated password if your security question is what is your favourite colour.
flagpole is offline   Reply With Quote
Old 07-03-2013, 14:04
heiker
Forum Member
 
Join Date: Jun 2012
Posts: 3,284
No point in having two threads open. Suggest you post on:

http://forums.digitalspy.co.uk/showthread.php?t=1803444
heiker is offline   Reply With Quote
Old 07-03-2013, 14:08
cnbcwatcher
Forum Member
 
Join Date: Sep 2008
Location: Avoiding Labour Law lecturers
Posts: 49,954
Just checked my login activity. Last login was from Ireland, where I am. That means mine is ok.
cnbcwatcher is offline   Reply With Quote
Old 07-03-2013, 14:21
koantemplation
Forum Member
 
Join Date: Oct 2002
Location: Wolf359
Posts: 77,258
Just checked my login activity. Last login was from Ireland, where I am. That means mine is ok.
How do you check for your login activity?

Edit: It's OK I've found it.
koantemplation is offline   Reply With Quote
Old 07-03-2013, 18:10
plugs13amp
Forum Member
 
Join Date: Feb 2008
Posts: 226
For those that can't find / haven't found the login activity page, go here
plugs13amp is offline   Reply With Quote
Old 07-03-2013, 23:26
emptybox
Forum Member
 
Join Date: Mar 2006
Location: Scottish Borders
Posts: 10,925
Somebody seems to have logged into mine from Uruguay.

Changed the password, but not sure how much damage has been done?
emptybox is online now   Reply With Quote
Old 09-03-2013, 18:09
DJW13
Forum Member
 
Join Date: Apr 2009
Location: Exeter
Posts: 2,142
My mysterious logger-in this morning was from Belarous. Hopefully no-one who received the unexpected message from me will have opened the link in the message!

I've changed my password - I assume there is nothing else I can do? I can still receive messages, but Yahoo has blocked my account from sending more for the moment. They say they might block the account for up to 48 hours, so I'll just keep trying.
DJW13 is offline   Reply With Quote
Old 09-03-2013, 20:21
Stig
Forum Member
 
Join Date: Sep 2003
Location: Sandy Heath, Beds, UK
Posts: 6,582
Did those of you who were hacked have a simple dictionary word as a password?

It would be interesting to know how they are doing it.
Stig is offline   Reply With Quote
Old 09-03-2013, 21:13
heiker
Forum Member
 
Join Date: Jun 2012
Posts: 3,284
Did those of you who were hacked have a simple dictionary word as a password?

It would be interesting to know how they are doing it.
I originally had a 7 character noun plus 3 numerics password. However, I'm convinced that they are not working out passwords to gain entry. This is entry via a back door that Yahoo left wide open.
heiker is offline   Reply With Quote
Old 09-03-2013, 21:24
NoseyLouie
Forum Member
 
Join Date: May 2007
Location: Glasgow - Land of everypoo
Posts: 4,357
That's worrying, I checked mine but all seems ok, I changed my questions and password anyway...
NoseyLouie is offline   Reply With Quote
Old 09-03-2013, 23:08
OMTT
Forum Member
 
Join Date: Aug 2011
Posts: 2,554
This happened to me earlier in the week. I only found out the next morning when I had over 50 emails in my inbox from mail daemon saying I had failed emails etc but when I checked the sent items, they weren't showing. I've also had an increase in spam in the time since.

I changed my password straight away & I just clicked on the link above to see where I had been signed in & I was signed in twice in Thailand within a minute on both PC & mobile
OMTT is offline   Reply With Quote
Old 09-03-2013, 23:25
s2k
Forum Member
 
Join Date: Apr 2006
Posts: 4,932
I updated my password a few days ago as a precautionary measure. Strangely enough it doesn't allow you to use any special characters in your password so its hardly surprising accounts are getting hijacked.
s2k is offline   Reply With Quote
Old 10-03-2013, 00:02
emptybox
Forum Member
 
Join Date: Mar 2006
Location: Scottish Borders
Posts: 10,925
Did those of you who were hacked have a simple dictionary word as a password?

It would be interesting to know how they are doing it.
I updated my password a few days ago as a precautionary measure. Strangely enough it doesn't allow you to use any special characters in your password so its hardly surprising accounts are getting hijacked.
Simple passwords would only be an issue if Yahoo allowed unlimited attempts without lock-up, whereas your account locks up for a few hours after the fourth wrong attempt.

Also, as well as a password, they use a captcha code, so that should stop somebody using automatic software?
emptybox is online now   Reply With Quote
Old 10-03-2013, 09:34
DJW13
Forum Member
 
Join Date: Apr 2009
Location: Exeter
Posts: 2,142
I was relieved to find this morning that there were no more fake messages and that I can now send e-mails again.

I was asked for a captcha code before sending it though and it remains to be seen whether I will always have to provide one in future, or whether this was just a one-off to ensure that a human was back in charge.
DJW13 is offline   Reply With Quote
Old 10-03-2013, 11:47
Thine Wonk
Forum Member
 
Join Date: Mar 2009
Posts: 10,120
It is likely people using the same yahoo login and password on a service that has been hacked like Evernote was, and then those accounts being abused on Yahoo. That or silly questions and answers on password reset.
Thine Wonk is online now   Reply With Quote
Old 10-03-2013, 17:30
emptybox
Forum Member
 
Join Date: Mar 2006
Location: Scottish Borders
Posts: 10,925
I was relieved to find this morning that there were no more fake messages and that I can now send e-mails again.

I was asked for a captcha code before sending it though and it remains to be seen whether I will always have to provide one in future, or whether this was just a one-off to ensure that a human was back in charge.
I'm finding that Windows Live Mail won't log into Yahoo to fetch mail. It just keeps asking for my new password.
Logging into the Yahoo site is fine.

Luckily I only use Yahoo as a secondary email address, and I don't have any contacts for them to send mail to, if I'm hacked again.
I think I'll just abandon it as a bad job.

And to Thine Wonk, I'm not registered to Evernote, or any other service that's been hacked (as far as I know?), and my password reset question is not one that could be easily guessed or found out. So I don't think that's how it's been done?
emptybox is online now   Reply With Quote
Old 10-03-2013, 20:14
Thine Wonk
Forum Member
 
Join Date: Mar 2009
Posts: 10,120
I'm finding that Windows Live Mail won't log into Yahoo to fetch mail. It just keeps asking for my new password.
Logging into the Yahoo site is fine.

Luckily I only use Yahoo as a secondary email address, and I don't have any contacts for them to send mail to, if I'm hacked again.
I think I'll just abandon it as a bad job.

And to Thine Wonk, I'm not registered to Evernote, or any other service that's been hacked (as far as I know?), and my password reset question is not one that could be easily guessed or found out. So I don't think that's how it's been done?
You say that, but thousands of sites people visit have been hacked, there's every chance you used that Yahoo email address and the same password at a random site that got hacked.

That's why you should:

Use a complex password at least 9 characters long, that means if they get your hashed password from the database of the hacked site it'll take a long time to work out what it was.

Use unique passwords for sites by using a password manager either in your browser to remember it or Lastpass or Keypass.

Consider changing high security passwords like your email account once every 3 months, remember your email is the key to resetting ALL other accounts out there. It needs to be as secure as your online bank or Paypal. These should have at least 9 character passwords, unique and be reset once every 3-6 months.

Password reset answers are a real weakness and you should consider making them more complex. Enable 2 factor auth if available, such as google sending you an SMS code in order to reset your password - they offer this.

Gone are the days of 'apples21' being acceptable. They'll find a vulnerable site, sql inject or extract the database contents, in some cases they'll need to rainbow table the passwords to work out what they were and this can take time. They will then sort the accounts into their associated webmail services, script to test which work and which don't and then sell the working ones.

If you're lucky it'll just get used for spam, if you're very unlucky somebody will search the email to find what services you use, steam, google play etc reset the passwords for those and then sell those credentials. Play accounts go for 100, so you can see why they are motivated to do all this work.
Thine Wonk is online now   Reply With Quote
 
Reply



Thread Tools Search this Thread
Search this Thread:

Advanced Search

 
Forum Jump


All times are GMT +1. The time now is 18:24.