Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSpark New Zealand (including Skinny and BigPipe)Another wave of hacked Yahoo/Xtra mail accounts?
Spong

1016 posts

Uber Geek
+1 received by user: 341

Trusted

#136532 30-Nov-2013 12:18
Send private message

I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.




Tivo upgrades to operate with the new OzTivo EPG, support and service. Over 400 performed here so far. See: www.hillcrest.net.nz

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5
l43a2
1784 posts

Uber Geek
+1 received by user: 591

ID Verified
Trusted

  #943379 30-Nov-2013 12:56
Send private message

i got some this morning also, seems yahoo mail isn't the best fit for Telecom giving them problem after problem after problem :|







cyril7
9073 posts

Uber Geek
+1 received by user: 2499

ID Verified
Trusted
Subscriber

  #943432 30-Nov-2013 16:31
Send private message

Hi, had a bunch of these come through this morning.

Cyril

robjg63
4161 posts

Uber Geek
+1 received by user: 1425

Subscriber

  #943434 30-Nov-2013 16:35
Send private message

Funnily enough I got an email yesterday that I thought was spam that said that access to my yahoo mail account (that I dont use very much) had been detected from the states.

I can still access the account - so the password hasnt been hacked - but sounds like yahoo have been targeted recently.




Nothing is impossible for the man who doesn't have to do it himself - A. H. Weiler



surfisup1000
5288 posts

Uber Geek
+1 received by user: 2159


  #943436 30-Nov-2013 16:39
Send private message

Spong: I've just received spam messages apparently from two friends with xtra addresses, who clearly didn't send them knowingly.

There were also several additional people placed in the To: field that could only have been extracted from their Yahoo/Xtra webmail address book.

The subject fields had  "FW" and the second one "Hey", and both of them simply contained a link (twice) to a miracle green coffee bean that reduces weight.

Both links were different but went to the same page.

http://aristonkombiservis.com/kqcb/sdjijgydnmbzfajzaaduytvb.kiumrgqxnop
http://property-agent.com/ffls/uifyw.html which also pushes these green beans.

These look very similar to what was happening much earlier in the year, when Yahoo's email passwords were hacked. I'm guessing some of these passwords have been kept for further attacks or the same vulnerability still exists?

Obviously I've encouraged these people to change their passwords again.  XTRA really should change to another email provider. I believe BT left them behind after the previous attack.
 
I can forward headers by PM if required.

Edit: I've just had a third email as bove from a distant family member: http://qantasformula1promo.com/bzahq/gyoryd.html
This also takes you to the evil green coffee beans.



me too.

linw
2893 posts

Uber Geek
+1 received by user: 1205


  #943437 30-Nov-2013 16:42
Send private message

A friend got one yesterday from one of our mutual friends. Haven't got one myself yet!

Just looked in my spam folder and there is a 'stranded in Manila - please send money' one from a gmail account!

Gonna be hard to find an email provider if we have to close all xtra and gmail accounts!

Zeon
3926 posts

Uber Geek
+1 received by user: 759

Trusted

  #943446 30-Nov-2013 17:07
Send private message

Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:




Speedtest 2019-10-14

 
 
 
 

Want to support Geekzone and browse the site without the ads? Subscribe to Geekzone now (monthly, annual and lifetime options).
mattwnz
20515 posts

Uber Geek
+1 received by user: 4795


  #943457 30-Nov-2013 17:36
Send private message

Zeon: Yup just finished changing the password of someone I'm staying with. They are accessing from 6 different devices and alongside the hacking I can't convince them to switch to a proper mail provider with activesync :facepalm:


People don't want to pay for something they can get for free. Think about how much your time would have cost them though, so it is false economy.

Dairyxox
1595 posts

Uber Geek
+1 received by user: 455


  #943485 30-Nov-2013 19:26
Send private message

Yup I got one of these this morning, and thought the same thing as the OP. Nice to see it 'confirmed' here (that other people have noticed it too).
Lets grab the popcorn and see what happens this time around.

freitasm
BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41030

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #943513 30-Nov-2013 21:07
Send private message






Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

richms
29098 posts

Uber Geek
+1 received by user: 10207

Trusted
Lifetime subscriber

  #943517 30-Nov-2013 21:19
Send private message

Mums long unused yahoo account got the same notification about a login this morning.




Richard rich.ms

RedJungle
Phil Gale
1108 posts

Uber Geek
+1 received by user: 46

Trusted
Red Jungle
Subscriber

  #943608 1-Dec-2013 09:30
Send private message

Yup, had a bunch the last couple of days.. Well past time to ditch Yahoo.

 
 
 
 

Shop on-line at New World now for your groceries (affiliate link).
BlueToothKiwi
282 posts

Ultimate Geek
+1 received by user: 3

Trusted

  #943643 1-Dec-2013 11:01
Send private message

Yeap me too - and I am paranoid about security - Have Windows 8.1 and Browser totally locked down with highly complex 17 character long password that cant be bruteforced. So it annoys me when my primary home account is been hacked at the server end.

Soo annoyed - as when I got the first wave of bounces, I tried to reset the password via the Telecom Automated screens - but they both rejecting my credentials / account numbers.

Of course I rang Telecom helpdesk - and the message said 1 hour waiting time - 90 minutes later - I am still on hold to change my password!!

The biggest and stupidest thing Telecom ever did - Dump MSN and replace it with crappy Yahoo.




Tim M, Auckland
Blog: http://paddler.co.nz

DigiDog
51 posts

Master Geek
+1 received by user: 18


  #943652 1-Dec-2013 11:20
Send private message

I received a couple yesterday... three this morning. It feels like the Xtra / spam floodgates are about to open again as they did earlier in the year.




= = =

         http://scambusters.co.nz
Keeping TradeMe scam free since 2003

= = =

khull
1245 posts

Uber Geek
+1 received by user: 133


  #943658 1-Dec-2013 11:40
Send private message

Same here - didn't realise it until I noticed what was common about the emails I received were from women with xtra and yahoo accounts. hmmm....

lyonrouge
1993 posts

Uber Geek
+1 received by user: 20

Trusted
Lifetime subscriber

  #943702 1-Dec-2013 14:51
Send private message

I don't think I've been hacked but I went to change the password anyway but the site it not accepted current passwords either, wouldn't it be nice if we could have email portability like number port?

 1 | 2 | 3 | 4 | 5
View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright