• Sophisticated Hotmail hijacking with DropBox message re-routes

    Posted on June 21, 2016 at 13:49 CDT by Comment in the Forums

    Scary message from SC:

    On June 17, I discovered my  Hotmail had been hacked probably because of the theft of close to 300 million passwords from Hotmail, Gmail, and Yahoo back in May. Whoever hacked me on the 17th was very clever and since I was out  of town, it took me 2 days to see what they did. They had also changed my passwords on FaceBook, Evernote, and DropBox all of whom sent out  emails saying my password had changed including Hotmail.

    I was able to  reset my password for all of those services except for DropBox. I was away when this happened so I was using my iPad for email and did not use the website at Outlook.com to retrieve mail.

    When I arrived home yesterday I decided to look at the  Outlook options to see if Dropbox had been accidentally added to the blocked senders list; it hadn’t. I then looked at the sorting rules for incoming mail and found about 8 new filters that sent various domain names to my deleted folder. One of those was DropBox. I found all the password reset emails from DropBox in my deleted folder which  I did not see on my iPad because that is one of the  folders that I do not sync.

    I had never heard of a hacker adding  filters to  email to prevent users from seeing the email that would reset  their  passwords via a lost password reset email.

    SC adds: In addition to the above, they put a filter in my gmail account which is backup to my hotmail account and set a filter to put anything from Microsoft into my gmail trash and mark it  as read. In effect, they are making things so that I  think I never got my password reset link from  Microsoft.

    Other
DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    April 2025
    S M T W T F S
     12345
    6789101112
    13141516171819
    20212223242526
    27282930  

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.