Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Juno Addressbook Harvested?
49 views
Skip to first unread message
(PeteCresswell)
Oct 12, 2012, 1:31:51 PM10/12/12
to
Just got a call from somebody who uses Juno as their email
provider (yeah, I've tried to move them away from Juno in the
past... but they're not having any of it).
The situation is that people are receiving emails from that
person's Juno address and the people receiving the emails (on the
CC list) are all in that person's Juno address book.
Unencumbered by any real knowledge, I want to assume that
somehow, somebody harvested that person's Juno address book.
Are there other possibilities?
--
Pete Cresswell
provider (yeah, I've tried to move them away from Juno in the
past... but they're not having any of it).
The situation is that people are receiving emails from that
person's Juno address and the people receiving the emails (on the
CC list) are all in that person's Juno address book.
Unencumbered by any real knowledge, I want to assume that
somehow, somebody harvested that person's Juno address book.
Are there other possibilities?
--
Pete Cresswell
(PeteCresswell)
Oct 12, 2012, 1:42:24 PM10/12/12
to
Per (PeteCresswell):
>people are receiving emails
FWIW, the body of the emails was:
Hi!
http://thamizharmaiyam.in/data/home.php?friend_id=jdjrosfaqjqumj
I haven't got the heart to click on it... so I have no clue what
it represents.
--
Pete Cresswell
>people are receiving emails
FWIW, the body of the emails was:
Hi!
http://thamizharmaiyam.in/data/home.php?friend_id=jdjrosfaqjqumj
I haven't got the heart to click on it... so I have no clue what
it represents.
--
Pete Cresswell
FromTheRafters
Oct 12, 2012, 2:51:33 PM10/12/12
to
(PeteCresswell) explained on 10/12/2012 :
Two redirects ending up on a work at home scam.
FromTheRafters
Oct 12, 2012, 2:53:26 PM10/12/12
to
(PeteCresswell) was thinking very hard :
Sometimes one captured e-mail can provide scammers/spammers with what
almost amounts to an address book. However, my feeling is that the
webmail dohicky was compromised.
almost amounts to an address book. However, my feeling is that the
webmail dohicky was compromised.
Betty
Oct 12, 2012, 4:53:12 PM10/12/12
to
invitation to join someone at LinkedIn around the first of August. That
person had a Juno email address. However, LinkedIn was also hacked in
June and passwords stolen.
I have not been in contact with the person for many years.
(PeteCresswell)
Oct 12, 2012, 5:28:12 PM10/12/12
to
Per Betty:
--
Pete Cresswell
>Do you know when the event took place? Is your friend a Texan? I got an
>invitation to join someone at LinkedIn around the first of August. That
>person had a Juno email address. However, LinkedIn was also hacked in
>June and passwords stolen.
>
>I have not been in contact with the person for many years.
Pennsylvania, yesterday or today.
>invitation to join someone at LinkedIn around the first of August. That
>person had a Juno email address. However, LinkedIn was also hacked in
>June and passwords stolen.
>
>I have not been in contact with the person for many years.
--
Pete Cresswell
(PeteCresswell)
Oct 12, 2012, 5:29:28 PM10/12/12
to
Per FromTheRafters:
>webmail dohicky was compromised.
Can anybody give examples of the mechanism for doing something
like that?
Does it involve hitting the person's PC or going at the Juno
servers?
--
Pete Cresswell
>webmail dohicky was compromised.
Can anybody give examples of the mechanism for doing something
like that?
Does it involve hitting the person's PC or going at the Juno
servers?
--
Pete Cresswell
FromTheRafters
Oct 12, 2012, 5:36:51 PM10/12/12
to
It happens that (PeteCresswell) formulated :
It could be as simple as correctly guessing the password (lucky guess
or brute force) or even by attacking the security question in the
'forgot my password' dialog. Hacking servers isn't out of the question
either.
There are also cases where the victim had a trojan keylogger and the
account was compromised that way.
or brute force) or even by attacking the security question in the
'forgot my password' dialog. Hacking servers isn't out of the question
either.
There are also cases where the victim had a trojan keylogger and the
account was compromised that way.
(PeteCresswell)
Oct 13, 2012, 9:14:54 AM10/13/12
to
Per FromTheRafters:
i.e. Could that PC have acquired malware that actually sent the
spams from the PC? Or is that too sophisticated for somebody
who is sending out such hokey spams?
--
Pete Cresswell
>It could be as simple as correctly guessing the password (lucky guess
>or brute force) or even by attacking the security question in the
>'forgot my password' dialog. Hacking servers isn't out of the question
>either.
>
>There are also cases where the victim had a trojan keylogger and the
>account was compromised that way.
Can anybody comment on the probability of zombification?
>or brute force) or even by attacking the security question in the
>'forgot my password' dialog. Hacking servers isn't out of the question
>either.
>
>There are also cases where the victim had a trojan keylogger and the
>account was compromised that way.
i.e. Could that PC have acquired malware that actually sent the
spams from the PC? Or is that too sophisticated for somebody
who is sending out such hokey spams?
--
Pete Cresswell
FromTheRafters
Oct 13, 2012, 10:10:15 PM10/13/12
to
(PeteCresswell) pretended :
I suppose that it possible. I think it much more likely that there was
a weak password.
a weak password.
0 new messages