Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




750 posts

Ultimate Geek
+1 received by user: 173

Trusted

Topic # 136532 30-Nov-2013 12:18
4 people support this post
Send private message

I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.




Tivo upgrades to operate with the new OzTivo EPG, support and service. Over 300 performed here so far. See: www.hillcrest.net.nz


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5
1519 posts

Uber Geek
+1 received by user: 484

Trusted

  Reply # 943379 30-Nov-2013 12:56
2 people support this post
Send private message

i got some this morning also, seems yahoo mail isn't the best fit for Telecom giving them problem after problem after problem :|




6583 posts

Uber Geek
+1 received by user: 486

Trusted
Subscriber

  Reply # 943432 30-Nov-2013 16:31
Send private message

Hi, had a bunch of these come through this morning.

Cyril

 
 
 
 


2890 posts

Uber Geek
+1 received by user: 607


  Reply # 943434 30-Nov-2013 16:35
Send private message

Funnily enough I got an email yesterday that I thought was spam that said that access to my yahoo mail account (that I dont use very much) had been detected from the states.

I can still access the account - so the password hasnt been hacked - but sounds like yahoo have been targeted recently.




Nothing is impossible for the man who doesn't have to do it himself - A. H. Weiler

4080 posts

Uber Geek
+1 received by user: 1370


  Reply # 943436 30-Nov-2013 16:39
Send private message

Spong: I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.



me too.

1981 posts

Uber Geek
+1 received by user: 402

Subscriber

  Reply # 943437 30-Nov-2013 16:42
Send private message

A friend got one yesterday from one of our mutual friends. Haven't got one myself yet!

Just looked in my spam folder and there is a 'stranded in Manila - please send money' one from a gmail account!

Gonna be hard to find an email provider if we have to close all xtra and gmail accounts!

3446 posts

Uber Geek
+1 received by user: 441

Trusted

  Reply # 943446 30-Nov-2013 17:07
Send private message

Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:





14721 posts

Uber Geek
+1 received by user: 1987


  Reply # 943457 30-Nov-2013 17:36
Send private message

Zeon: Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:


People don't want to pay for something they can get for free. Think about how much your time would have cost them though, so it is false economy.

1456 posts

Uber Geek
+1 received by user: 382


  Reply # 943485 30-Nov-2013 19:26
Send private message

Yup I got one of these this morning, and thought the same thing as the OP. Nice to see it 'confirmed' here (that other people have noticed it too).
Lets grab the popcorn and see what happens this time around.

BDFL - Memuneh
63004 posts

Uber Geek
+1 received by user: 13581

Administrator
Trusted
Geekzone
Lifetime subscriber

21983 posts

Uber Geek
+1 received by user: 4645

Trusted
Subscriber

  Reply # 943517 30-Nov-2013 21:19
One person supports this post
Send private message

Mums long unused yahoo account got the same notification about a login this morning.




Richard rich.ms

Phil Gale
1107 posts

Uber Geek
+1 received by user: 44

Trusted
Red Jungle
Subscriber

  Reply # 943608 1-Dec-2013 09:30
2 people support this post
Send private message

Yup, had a bunch the last couple of days.. Well past time to ditch Yahoo.




Red Jungle: we make fantastic software

RSS  Twitter  Facebook  Skype

282 posts

Ultimate Geek
+1 received by user: 3

Trusted

  Reply # 943643 1-Dec-2013 11:01
2 people support this post
Send private message

Yeap me too - and I am paranoid about security - Have Windows 8.1 and Browser totally locked down with highly complex 17 character long password that cant be bruteforced. So it annoys me when my primary home account is been hacked at the server end.

Soo annoyed - as when I got the first wave of bounces, I tried to reset the password via the Telecom Automated screens - but they both rejecting my credentials / account numbers.

Of course I rang Telecom helpdesk - and the message said 1 hour waiting time - 90 minutes later - I am still on hold to change my password!!

The biggest and stupidest thing Telecom ever did - Dump MSN and replace it with crappy Yahoo.




Tim M, Auckland
Blog: http://paddler.co.nz





51 posts

Master Geek
+1 received by user: 18


  Reply # 943652 1-Dec-2013 11:20
One person supports this post
Send private message

I received a couple yesterday... three this morning. It feels like the Xtra / spam floodgates are about to open again as they did earlier in the year.

1245 posts

Uber Geek
+1 received by user: 137


  Reply # 943658 1-Dec-2013 11:40
One person supports this post
Send private message

Same here - didn't realise it until I noticed what was common about the emails I received were from women with xtra and yahoo accounts. hmmm....

1990 posts

Uber Geek
+1 received by user: 20

Trusted
Lifetime subscriber

  Reply # 943702 1-Dec-2013 14:51
One person supports this post
Send private message

I don't think I've been hacked but I went to change the password anyway but the site it not accepted current passwords either, wouldn't it be nice if we could have email portability like number port?

 1 | 2 | 3 | 4 | 5
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Orcon announces new always-on internet service for Small Business
Posted 18-Apr-2019 10:19


Spark Sport prices for Rugby World Cup 2019 announced
Posted 16-Apr-2019 07:58


2degrees launches new unlimited mobile plan
Posted 15-Apr-2019 09:35


Redgate brings together major industry speakers for SQL in the City Summits
Posted 13-Apr-2019 12:35


Exported honey authenticated on Blockchain
Posted 10-Apr-2019 21:19


HPE and Nutanix partner to deliver hybrid cloud as a service
Posted 10-Apr-2019 21:12


Southern Cross and ASN sign contract for Southern Cross NEXT
Posted 10-Apr-2019 21:09


Data security top New Zealand consumer priority when choosing a bank
Posted 10-Apr-2019 21:07


Samsung announces first 8K screens to hit New Zealand
Posted 10-Apr-2019 21:03


New cyber-protection and insurance product for businesses launched in APAC
Posted 10-Apr-2019 20:59


Kiwis ensure streaming is never interrupted by opting for uncapped broadband plans
Posted 7-Apr-2019 09:05


DHL Express introduces new MyDHL+ online portal to make shipping easier
Posted 7-Apr-2019 08:51


RackWare hybrid cloud platform removes barriers to enterprise cloud adoption
Posted 7-Apr-2019 08:50


Top partner named at MYOB High Achievers Awards
Posted 7-Apr-2019 08:48


Great ideas start in Gisborne with hackathon event back for another round
Posted 7-Apr-2019 08:42



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.