On Mar 25, 2:38 pm, aditya2k <
adity...@gmail.com> wrote:
> Sorry about this. *Please don't click on the link.*
>
> My account was compromised, and according to gmail's account activity log,
> there were logins from Russia and Romania. Recently, gawker's user database
> was compromised and the passwords were cracked. I happened to use the same
> password and login id on their network as well. Being a techie guy myself, I
> should've changed the password of this account after that incident. I've
> always used different passwords for primary email accounts and financial
> accounts.
>
> Here are key takeaways:
> - Maintain unique passwords for financial accounts.
> - Maintain unique passwords for key (or all) email accounts.
> - Many sites that host forums save your password in clear text, and if their
> database is compromised internally or externally, you're at risk.
> - Many sites use http (and not https), so your password is sent in clear
> text over the air and if you're on Public Wi-Fi, data can be easily sniffed.
>
> On Mon, Mar 21, 2011 at 3:53 PM, mathtalk <
hardm...@gmail.com> wrote:
> > Some spam similar to this went out from my wife's
> > gmail account today. What is going on? I believe
> > the link below redirects to a spam site.
Thanks, aditya2k, you make some good points.
I looked at the headers of my wife's email, and it wasn't
obvious whether her account had been used or spoofed. In
any case my report of the incident to Google resulted in
her promptly being locked out, pending reverification by
one of several methods.
It's obviously not easy for most people to maintain unique
passwords on all accounts, but I treat gmail like a
financial account and keep a stronger password there than
on forums (where I really have no idea of the backend
implementation).
regards, chip