Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSpark New Zealand (including Skinny and BigPipe)Xtra Checks - Vacation Response Spam


1423 posts

Uber Geek
Inactive user


#114649 26-Feb-2013 15:50
Send private message

Hi all,

Had a client pop in today as they are getting messages bouncing back from people they hadn't sent emails
to.

To cut a long story short ...

Some of the hacked xtra accounts possibly had spam vacation responses set up in them. The person breaking in will set the xtra users vacation resposnse to run until sometime a few years from now and get it to send a spam message to everyone who emails the xtra user.

Worth checking if you are dealing with TCom / Xtra email users. In fact its worth checking if you deal with any web based email service who has been compromised.

For Xtra -
  1. Log into the users account
  2. Goto options
  3. email options
  4. Vacation Response.

Follow your nose. Its also worth checking to see if a malicious alias, temporary disposable internet address or similar has been created .

HTH

Shane

Create new topic
1948 posts

Uber Geek
Inactive user


  #770571 26-Feb-2013 15:53
Send private message

If you go to the main Telecom home page you see the first link which informs customers to change their passwords takes you here:

http://telecom.custhelp.com/app/answers/detail/a_id/26203?pid=int452

And yes it does detail the steps to check to make sure you don't have a vacation setting turned on.



1423 posts

Uber Geek
Inactive user


  #770672 26-Feb-2013 18:40
Send private message

plambrechtsen: If you go to the main Telecom home page you see the first link which informs customers to change their passwords takes you here:

http://telecom.custhelp.com/app/answers/detail/a_id/26203?pid=int452

And yes it does detail the steps to check to make sure you don't have a vacation setting turned on.



Four things:

 1 - Many clients dont use web mail so dont look at the web mail section, instead they follow the directions given and never go to the section that says confirm your web mail settings are complete.

2 - The banner on the main TCom page doesnt work unless you manage to see it as your first hit the page. It auto changes to advertising - making it difficult for people to find. We also hae taught our clients not to click on advertising - it leads to all sorts of trouble so they probably wouldnt click on a web adertising banner. it is a backwards security step for tcom to do it this way.

3 - Going through the steps given for a lot of our users ended them up with all sorts of crap about setting up profiles and putting photos up etc. Clicking on the go away link just stopped everything from working.

4 - In your advertising and advice it says change your password - most of our clients having done so never went any further as they had done what TCom told them to do. The advertising should have been more specific about what was needed to fix all the issues.

So no offence intended, why dump on someone who is helping you do what we should never have had to do in the first place?



Create new topic





Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Chorus completes the build and commissioning of two new core Ethernet switches
Posted 8-Jul-2020 09:48

National Institute for Health Innovation develops treatment app for gambling
Posted 6-Jul-2020 16:25

Nokia 2.3 to be available in New Zealand
Posted 6-Jul-2020 12:30

Menulog change colours as parent company merges with Dutch food delivery service
Posted 2-Jul-2020 07:53

Techweek2020 goes digital to make it easier for Kiwis to connect and learn
Posted 2-Jul-2020 07:48

Catalyst Cloud launches new Solutions Hub to support their kiwi Partners and Customers
Posted 2-Jul-2020 07:44

Microsoft to help New Zealand job seekers acquire new digital skills needed for the COVID-19 economy
Posted 2-Jul-2020 07:41

Hewlett Packard Enterprise introduces new HPE GreenLake cloud services
Posted 24-Jun-2020 08:07

New cloud data protection services from Hewlett Packard Enterprise
Posted 24-Jun-2020 07:58

Hewlett Packard Enterprise unveils HPE Ezmeral, new software portfolio and brand
Posted 24-Jun-2020 07:10

Apple reveals new developer technologies to foster the next generation of apps
Posted 23-Jun-2020 15:30

Poly introduces solutions for Microsoft Teams Rooms
Posted 23-Jun-2020 15:14

Lenovo launches new ThinkPad P Series mobile workstations
Posted 23-Jun-2020 09:17

Lenovo brings Linux certification to ThinkPad and ThinkStation Workstation portfolio
Posted 23-Jun-2020 08:56

Apple introduces new features for iPhone iOS14 and iPadOS 14
Posted 23-Jun-2020 08:28


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.