Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




764 posts

Ultimate Geek

Trusted

# 136532 30-Nov-2013 12:18
4 people support this post
Send private message

I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.




Tivo upgrades to operate with the new OzTivo EPG, support and service. Over 300 performed here so far. See: www.hillcrest.net.nz


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5
1538 posts

Uber Geek

Trusted

  # 943379 30-Nov-2013 12:56
2 people support this post
Send private message

i got some this morning also, seems yahoo mail isn't the best fit for Telecom giving them problem after problem after problem :|




6849 posts

Uber Geek

Trusted
Subscriber

  # 943432 30-Nov-2013 16:31
Send private message

Hi, had a bunch of these come through this morning.

Cyril

 
 
 
 


2954 posts

Uber Geek


  # 943434 30-Nov-2013 16:35
Send private message

Funnily enough I got an email yesterday that I thought was spam that said that access to my yahoo mail account (that I dont use very much) had been detected from the states.

I can still access the account - so the password hasnt been hacked - but sounds like yahoo have been targeted recently.




Nothing is impossible for the man who doesn't have to do it himself - A. H. Weiler

4321 posts

Uber Geek


  # 943436 30-Nov-2013 16:39
Send private message

Spong: I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.



me too.

2023 posts

Uber Geek

Subscriber

  # 943437 30-Nov-2013 16:42
Send private message

A friend got one yesterday from one of our mutual friends. Haven't got one myself yet!

Just looked in my spam folder and there is a 'stranded in Manila - please send money' one from a gmail account!

Gonna be hard to find an email provider if we have to close all xtra and gmail accounts!

3481 posts

Uber Geek

Trusted

  # 943446 30-Nov-2013 17:07
Send private message

Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:





15029 posts

Uber Geek


  # 943457 30-Nov-2013 17:36
Send private message

Zeon: Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:


People don't want to pay for something they can get for free. Think about how much your time would have cost them though, so it is false economy.

 
 
 
 


1476 posts

Uber Geek


  # 943485 30-Nov-2013 19:26
Send private message

Yup I got one of these this morning, and thought the same thing as the OP. Nice to see it 'confirmed' here (that other people have noticed it too).
Lets grab the popcorn and see what happens this time around.

22344 posts

Uber Geek

Trusted
Subscriber

  # 943517 30-Nov-2013 21:19
One person supports this post
Send private message

Mums long unused yahoo account got the same notification about a login this morning.




Richard rich.ms

Phil Gale
1108 posts

Uber Geek

Trusted
Red Jungle
Subscriber

  # 943608 1-Dec-2013 09:30
2 people support this post
Send private message

Yup, had a bunch the last couple of days.. Well past time to ditch Yahoo.




Red Jungle: we make fantastic software

RSS  Twitter  Facebook  Skype

282 posts

Ultimate Geek

Trusted

  # 943643 1-Dec-2013 11:01
2 people support this post
Send private message

Yeap me too - and I am paranoid about security - Have Windows 8.1 and Browser totally locked down with highly complex 17 character long password that cant be bruteforced. So it annoys me when my primary home account is been hacked at the server end.

Soo annoyed - as when I got the first wave of bounces, I tried to reset the password via the Telecom Automated screens - but they both rejecting my credentials / account numbers.

Of course I rang Telecom helpdesk - and the message said 1 hour waiting time - 90 minutes later - I am still on hold to change my password!!

The biggest and stupidest thing Telecom ever did - Dump MSN and replace it with crappy Yahoo.




Tim M, Auckland
Blog: http://paddler.co.nz





51 posts

Master Geek


  # 943652 1-Dec-2013 11:20
One person supports this post
Send private message

I received a couple yesterday... three this morning. It feels like the Xtra / spam floodgates are about to open again as they did earlier in the year.

1245 posts

Uber Geek


  # 943658 1-Dec-2013 11:40
One person supports this post
Send private message

Same here - didn't realise it until I noticed what was common about the emails I received were from women with xtra and yahoo accounts. hmmm....

1990 posts

Uber Geek

Trusted
Lifetime subscriber

  # 943702 1-Dec-2013 14:51
One person supports this post
Send private message

I don't think I've been hacked but I went to change the password anyway but the site it not accepted current passwords either, wouldn't it be nice if we could have email portability like number port?

 1 | 2 | 3 | 4 | 5
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel expands 10th Gen Intel Core Mobile processor family
Posted 23-Aug-2019 10:22


Digital innovation drives new investment provider
Posted 23-Aug-2019 08:29


Catalyst Cloud becomes a Kubernetes Certified Service Provider (KCSP)
Posted 23-Aug-2019 08:21


New AI legaltech product launched in New Zealand
Posted 21-Aug-2019 17:01


Yubico launches first Lightning-compatible security key, the YubiKey 5Ci
Posted 21-Aug-2019 16:46


Disney+ streaming service confirmed launch in New Zealand
Posted 20-Aug-2019 09:29


Industry plan could create a billion dollar interactive games sector
Posted 19-Aug-2019 20:41


Personal cyber insurance a New Zealand first
Posted 19-Aug-2019 20:26


University of Waikato launches space for esports
Posted 19-Aug-2019 20:20


D-Link ANZ expands mydlink ecosystem with new mydlink Mini Wi-Fi Smart Plug
Posted 19-Aug-2019 20:14


Kiwi workers still falling victim to old cyber tricks
Posted 12-Aug-2019 20:47


Lightning Lab GovTech launches 2019 programme
Posted 12-Aug-2019 20:41


Epson launches portable laser projector
Posted 12-Aug-2019 20:27


Huawei launches new distributed HarmonyOS
Posted 12-Aug-2019 20:20


Lenovo introduces single-socket servers for edge and data-intensive workloads
Posted 9-Aug-2019 21:26



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.