• Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

My gmail account hacked, how?

Collapse
X
  •  
  • Filter
  • Time
  • Show
Clear All
new posts

    #11
    My passwords are varied and complex.
    Thankfully I have a very good memory for figures too (Hi cojak). and mix with upper and lower case letters.

    Never had a password or account hacked and hopefully never will.

    My PC protection is also top notch (Purchased) and well maintained.
    Confusion is a natural state of being

    Comment


      #12
      I remember Hotmail being hacked like this and emails sent out en masse to all contacts but no emails were to be found in the sent items folder. Searching online for the virus responible for this was not easy. Seems Gmail has been affected too. I would love to know how this is done.
      Vote Corbyn ! Save this country !

      Comment


        #13
        My guess is they rip your contacts and then send as your email from their own servers?

        I still reckon getting your password+email from a vulnerable site might be one obvious attack vector, every site you use wants you to regsiter and lots still store passwords in plaintext
        Originally posted by MaryPoppins
        I'd still not breastfeed a nazi
        Originally posted by vetran
        Urine is quite nourishing

        Comment


          #14
          Originally posted by fullyautomatix View Post
          I remember Hotmail being hacked like this and emails sent out en masse to all contacts but no emails were to be found in the sent items folder. Searching online for the virus responible for this was not easy. Seems Gmail has been affected too. I would love to know how this is done.
          Dont they just get your contacts and use a mass emailer? I did alot of mass emailing during my f4j days. A great pity that all 100k emails I sent were to 1 contact.....

          Comment


            #15
            and lots still store passwords in plaintext
            Even hashed passwords, particularly if a salt is not used, can be relatively easy to crack.
            All extremely basic stuff for security purposes, which is why it's annoying to see developers who don't even use basics, jump the queue for work based on cost criteria.
            Speaking gibberish on internet talkboards since last Michaelmas. Plus here on Twitter

            Comment


              #16
              Originally posted by Diver View Post
              My passwords are varied and complex.
              Thankfully I have a very good memory for figures too (Hi cojak). and mix with upper and lower case letters.
              For general web accounts I use pwgen on Linux and OS X, and generate a new password per site. I see there's something similar for Windows with PWGen for Windows.

              For anything financial or confidential I go for longer passwords, again one per site.

              All my email accounts have unique passwords.
              Last edited by Sysman; 19 May 2012, 16:26.
              Behold the warranty -- the bold print giveth and the fine print taketh away.

              Comment


                #17
                Originally posted by d000hg View Post
                Is it just one of those things that happens somehow?
                I had one of my many accounts hacked about a year ago.

                I was using firefox and looked at an alternative health site in another tab when I had that particular gmail account open.

                The account was used for 7 hours to send out spam email to random addresses.

                Unfortunately for the account hijackers I was notified by the fact I didn't receive a standard daily email on my phone in the morning and so when I couldn't log in recovered my account.

                I know they were spamming because I found lots of junk in the sent folder, and gmail lists the IP addresses that last used your account.

                There weren't any contacts for them to spam apart from some old agencies that I hadn't removed from the contacts list.
                "You’re just a bad memory who doesn’t know when to go away" JR

                Comment

                Working...
                X