Sophisticated Hotmail hijacking with DropBox message re-routes

Topic

New Reply

Scary message from SC: On June 17, I discovered my  Hotmail had been hacked probably because of the theft of close to 300 million passwords from Hotma
[See the full post at: Sophisticated Hotmail hijacking with DropBox message re-routes]

Reply | Quote

Replies

That doesn’t sound nice at all SC…….. hope you’ve got it all resolved and thanks for posting. I was looking on line for any more info about this……. and noticed one link that spoke of linking those different cloud identities you spoke of with your hotmail account… May I ask if that was what you did and would that be why your other identities were compromised. Thank you ! LT

Reply | Quote

Adding mail filters and rules is not a new thing, I’ve seen it on a number of hijacked accounts that I recovered for clients. You may also want to look for any forwarding rules that would forward a copy of your incoming email to a perps email account.

Reply | Quote

To Lizzytish:

No. I had none of these accounts linked to Hotmail. They were also able to rechange my new password on some of the accounts within a few minutes. I have no idea how this could happen.

Steve

Reply | Quote

Sounds like a terrible experience, thank you for sharing, and I hope there hasn’t been too much damage caused.

It’s a good reminder for me that I need to delve into all my accounts’ passwords, security questions, and re-set instructions and get them much better walled-off from each other. Right now I’m sure that there’s a lot of notification/re-set account entanglement that could trip me up big-time if a breach or a problem occurred.

Reply | Quote

Everything is now OK. However I see no way of preventing this from happening since it was caused by a massive theft of passwords.

Two Step Verification would be good but I have an iPad and an iPod Touch and am using Windows Live Mail all of which make 2 step cumbersome to use. I also do not have a smartphone which is about the only high-tech gadget that I don’t have.

Reply | Quote

Thanks for letting me know, Steve………. that does sound very scary……. don’t like that sort of scenario one bit….. They say to be forewarned is to be forearmed………… but with this sort of thing it’s rather difficult to prepare against. Except to perhaps keep things to a minimum.

One of the things Yahoo and Gmail do (yahoo especially) is ask you for a mobile (cell) #…………. which I refuse….. why should they have more info…. but guess that is the two step verification…….. except of course they can use an alternative email route too…… and I must say Yahoo do it constantly when one logs in…… and it drives me crazy!! But maybe that’s a good thing. I shall remember not to become impatient! Reading below….I have what I call a
Dumb Phone!! very basic but does what I need! LT

Reply | Quote

Steve…

You might want to find an alternative for WLM pretty soon, according to the email I received from MS last week the plug is getting pulled beginning July first. Here’s a couple quotes from the email…

“When account upgrades begin at the end of June, you will no longer be able to receive email sent to your Out‍look‍.‍com account in the Windows Live Mail 2012 application. Rest assured, you can always access your email by logging into Out‍look‍.‍com from any web browser, and you will continue to have access to all your data that is currently in the Windows Live Mail 2012 application.”

“Please take action before Ju‍ne 30th, 2016, which is when we’ll begin upgrading accounts that currently use the Windows Live Mail 2012 application.”

Reply | Quote

Yeah, he’s dead, Jim….

http://www.infoworld.com/article/3067121/email/microsoft-to-windows-live-mail-2012-users-switch-now.html

Reply | Quote

You jumped the gun there Scotty!

I’m running the 2009 version on one system and 2012 on another… they’re both still alive & receiving!

I’ve already migrated to Thunderbird by the way but I still check through WLM every day first just to see if they’ve croaked yet.

Reply | Quote

Keep us posted, Sprock….

Reply | Quote

I will… immediately giving the greatest information source in the galaxy a heads-up would be the most logical step to take!

Reply | Quote