Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


723 posts

Ultimate Geek
+1 received by user: 169

Trusted

Topic # 115062 12-Mar-2013 15:46
Send private message

One of my clients with an Xtra email address, that wasn't affected by the recent email account compromise issue at Yahoo, was late last week made aware that her account was suddenly sending out spam emails to those in her Yahoo/Xtra address book. I received one also and it was very similar to those we all received a few weeks back.

This was the first time this has happened to her, and she never received an email from Xtra asking her to change her email password, nor was her password reset previously. Once I became aware, I advised her to change her password which she did over the weekend.

Today, her account has become suspended by Yahoo Services due to "Violation of the Yahoo! terms of Service" .
She hasn't had a chance to speak to XTRA about this yet, but I wonder whether there were more accounts compromised than we were aware of?

Has anyone else become aware of a second wave of these?

Doesn't look like Yahoo/Xtra have heard the last of this....






Tivo upgrades to operate with the new OzTivo EPG, support and service. Over 300 performed here so far.


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
82 posts

Master Geek
+1 received by user: 3


  Reply # 778632 12-Mar-2013 16:07
Send private message

This here, hope his helps.


Despite Yahoo's efforts to fix 'vulnerabilities', mail users have continued to see their accounts hacked. The company says two isolated security holes have been rectified, but the problems persist.

res of the article below

http://www.neowin.net/news/yahoo-mail-accounts-continue-to-be-hacked-despite-fixes

14213 posts

Uber Geek
+1 received by user: 1826


  Reply # 778650 12-Mar-2013 16:24
Send private message

Do people signup to the yahoo terms when they setup a telecom account and email address? I didn't think that telecom customers had a direct contract with yahoo?

It sounds like their individual computer has malware. Quite common these day, they probably clicked on a link in an email.

1948 posts

Uber Geek
+1 received by user: 469
Inactive user


  Reply # 778669 12-Mar-2013 16:43
Send private message

If you are getting the "your account is suspended" then I recommend you ring the helpdesk on 0800 225598 and speak with them.  Things have somewhat normalised and we are now back to our BAU process of suspending accounts if we are alerted by Yahoo that they are sending spam.

It does sound like the machine may have been infected with malware or somehow the password for that account was compromised.

You can email me pl at telecom.co.nz with the account address and I can look it up, but it's probably easier & faster to go via the helpdesk and get them to unsuspend the account.

E-Mails do still get delivered when the account is suspended but now we are going back to the BAU process where Yahoo advises us that email addresses have been sending spam and consequently we suspend those accounts.

82 posts

Master Geek
+1 received by user: 3


  Reply # 778676 12-Mar-2013 16:44
Send private message

As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.

1948 posts

Uber Geek
+1 received by user: 469
Inactive user


  Reply # 778679 12-Mar-2013 16:47
Send private message

weetbix43: As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.


However Telecom manage the full identity lifecycle from creation/suspension & termination.  So it is our systems (and believe me as I work on them) that send the provisioning requests to Yahoo to perform all the user lifecycle management operations.

2734 posts

Uber Geek
+1 received by user: 287


  Reply # 780961 13-Mar-2013 10:29
Send private message

Looking at my intercepted box, I have a tonne over the last 3-4 days from a craig.<name> (which happens to be my first name) @ xtra accounts.

All with pictures and "Tell a friend - Download latest version" contained somewhere within and one of those earn quick dollars scams

One from a yahoo.nl too. So not sure if this is a global push to random@xtra.co.nz again or if its more comprimised issues.

Hell, Even one is from me! (or so it claims to be)

Happy to bundle and forward if you need them to look into Paul



723 posts

Ultimate Geek
+1 received by user: 169

Trusted

  Reply # 780982 13-Mar-2013 10:50
Send private message

Well my customer's PC wasn't compromised as some have suggested. It was her Yahoo/Xtra account and her account was one of many suspended by Telecom yesterday.

She's back up and running having spoken to the helpdesk. It's very concerning that this problem is continuing, and Yahoo didn't identify the extent of the problem. If ever there was a reason to jump ship, this would have to be it.

However, my experience is that there are lots of doctors, lawyers and other professionals out there (many are my customers) who have had Xtra email addresses for 15 years or longer. Despite being well aware of the advantages of having their own domain email addresses, and the security issues of Yahoo's mail servers, none of them are even slightly interested in changing what they've had for 15+ years. They perceive it as "just too much trouble" considering the thousands of people they deal with. Telecom owe it to their customers to take responsibility for this serious issue, and move their email service to a better vendor.




Tivo upgrades to operate with the new OzTivo EPG, support and service. Over 300 performed here so far.


1948 posts

Uber Geek
+1 received by user: 469
Inactive user


  Reply # 780984 13-Mar-2013 10:52
Send private message

Oblivian: Looking at my intercepted box, I have a tonne over the last 3-4 days from a craig.<name> (which happens to be my first name) @ xtra accounts.

All with pictures and "Tell a friend - Download latest version" contained somewhere within and one of those earn quick dollars scams

One from a yahoo.nl too. So not sure if this is a global push to random@xtra.co.nz again or if its more comprimised issues.

Hell, Even one is from me! (or so it claims to be)

Happy to bundle and forward if you need them to look into Paul


If you could forward the emails through to ort at telecom.co.nz and include the full email headers he would be extremely helpful.

It's still being actively investigated.

7851 posts

Uber Geek
+1 received by user: 787

Subscriber

  Reply # 780987 13-Mar-2013 10:56
Send private message

weetbix43: As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.


When I signed up last month with Telecom as an ISP  I had the option of signing up for a Xtra email address but declined as I use  Outlook.com  and Orcon ones..




Regards,

Old3eyes


82 posts

Master Geek
+1 received by user: 3


  Reply # 781064 13-Mar-2013 12:40
Send private message

old3eyes:
weetbix43: As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.


When I signed up last month with Telecom as an ISP  I had the option of signing up for a Xtra email address but declined as I use  Outlook.com  and Orcon ones..



I've been with Telecom for a number of years. I was never given that option perhaps it is different now.

2734 posts

Uber Geek
+1 received by user: 287


  Reply # 781313 13-Mar-2013 21:35
Send private message

Forwarded as full .eml attachments as requested

Sorry.. keep getting Paul in my head when I see your name.. not the right one ;)

14213 posts

Uber Geek
+1 received by user: 1826


  Reply # 781329 13-Mar-2013 21:51
Send private message

old3eyes:
weetbix43: As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.


When I signed up last month with Telecom as an ISP  I had the option of signing up for a Xtra email address but declined as I use  Outlook.com  and Orcon ones..


But isn't the broadband username an xtra email address, so you automatically get one?At least I got one when I signed up last year.

1948 posts

Uber Geek
+1 received by user: 469
Inactive user


  Reply # 781353 13-Mar-2013 22:58
Send private message

mattwnz:
old3eyes:
weetbix43: As a Telecom customer when I signed up with telecom you are given a email address with xtra.co.nz  but it's tied to yahoo. When you login with that from telecom website it signs you into Yahoo.


When I signed up last month with Telecom as an ISP  I had the option of signing up for a Xtra email address but declined as I use  Outlook.com  and Orcon ones..


But isn't the broadband username an xtra email address, so you automatically get one?At least I got one when I signed up last year.


Haven't needed a username & password to login to broadband for the last few years as you're authenticated via the physical connection you're coming in via.  So normally you shouldn't need anything other than "user@xtrabb.co.nz" and "password" for the password which is the default in all modems shipped by Telecom these days.

72 posts

Master Geek
+1 received by user: 5


  Reply # 784725 20-Mar-2013 21:47
Send private message

FWIW, discovered the infrequently used Yahoo Xtra account that I hadn't logged in to for well over a year was goneburger / suspended as well. Only noticed it when trying to find some old photos on flickr and found that the accompanying Flickr pro account was gone. Telecom are sorting it out, but it seems from where I sit, this security breach was pretty extreme and my account may have been compromised quite some time ago?

Needless to say, I'm not motivated to start using any of yahoo services again anytime soon... An effectively dormant / unused account being compromised? Perhaps with the complexity of today's systems, I guess I shouldn't be surprised may be. Very disappointing none the less.

1948 posts

Uber Geek
+1 received by user: 469
Inactive user


  Reply # 784838 21-Mar-2013 10:31
Send private message

bender84: FWIW, discovered the infrequently used Yahoo Xtra account that I hadn't logged in to for well over a year was goneburger / suspended as well. Only noticed it when trying to find some old photos on flickr and found that the accompanying Flickr pro account was gone. Telecom are sorting it out, but it seems from where I sit, this security breach was pretty extreme and my account may have been compromised quite some time ago?

Needless to say, I'm not motivated to start using any of yahoo services again anytime soon... An effectively dormant / unused account being compromised? Perhaps with the complexity of today's systems, I guess I shouldn't be surprised may be. Very disappointing none the less.


If you could email me details on the account that you hadn't used, pl at telecom.co.nz with as much detail as you can.  Would be helpful to know.

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel introduces new NUC kits and NUC mini PCs
Posted 16-Aug-2018 11:03


The Warehouse leaps into the AI future with Google
Posted 15-Aug-2018 17:56


Targus set sights on enterprise and consumer growth in New Zealand
Posted 13-Aug-2018 13:47


Huawei to distribute nova 3i in New Zealand
Posted 9-Aug-2018 16:23


Home robot Vector to be available in New Zealand stores
Posted 9-Aug-2018 14:47


Panasonic announces new 2018 OLED TV line up
Posted 7-Aug-2018 16:38


Kordia completes first live 4K TV broadcast
Posted 1-Aug-2018 13:00


Schools get safer and smarter internet with Managed Network Upgrade
Posted 30-Jul-2018 20:01


DNC wants a safer .nz in the coming year
Posted 26-Jul-2018 16:08


Auldhouse becomes an AWS Authorised Training Delivery Partner in New Zealand
Posted 26-Jul-2018 15:55


Rakuten Kobo launches Kobo Clara HD entry level reader
Posted 26-Jul-2018 15:44


Kiwi team reaches semi-finals at the Microsoft Imagine Cup
Posted 26-Jul-2018 15:38


KidsCan App to Help Kiwi Children in Need
Posted 26-Jul-2018 15:32


FUJIFILM announces new high-performance lenses
Posted 24-Jul-2018 14:57


New FUJIFILM XF10 introduces square mode for Instagram sharing
Posted 24-Jul-2018 14:44



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.