Hotmail account hacked?

[Bubbayoshi]

hey, i just checked my older hotmail account and found about 100 notices that sends were unsuccessful. none of the target addresses are in my address book, and apparently my mom got some spam from me. i changed my password on the account a while ago, but now its happening again. is there any way to tell microsoft? or is the account pretty much dead?

 

[The Howling Wolves]

Bubba,
It happened to me so I closed the account and contacted MS.
Then moved to g-mail and yahoo. First I copied all contacts and saved them.

 

[mckillwashere]

Contact the hotmail team. they are actually very helpful (or they were years ago when mine was hacked). They can tell were the email was sent from and turn it over to the proper authorities if it is sent from a country with internet laws.

 

[brady]

change your password(s)

 

[mckillwashere]

change your password(s)

The op stated that they had done this step already, and it happened again.


One thing I would suggest is to run a good anti-virus program and malware bytes, just to try and pick up and spyware

 

[brady]

change your password(s)

The op stated that they had done this step already, and it happened again.


One thing I would suggest is to run a good anti-virus program and malware bytes, just to try and pick up and spyware

Oh, I see. I think you're right. Sounds like maybe a keylogger or something.

 

[Corrine]

Hi, Bubbayoshi.

Since you did not indicate you are having problems with other e-mail accounts or your computer, it is likely isolated to the old Hotmail account, although a full system scan of your A/V and/or anti-malware software wouldn't hurt. I agree that you should most definitely change your password. In addition, see the instructions for Hotmail Security to Protect and Recover Your Account.

 

[Bubbayoshi]

alright changed my password. i run a nightly flash scan with mbam and a weekly full with it and mcafee (it's what my computer came with). neither of them have found anything lately

 

[Corrine]

Good move, Bubbayoshi. If you haven't already, it would be wise to follow through with the other account verification steps.

 

[brady]

careful on the links

 

[Imperfect1]

First line of defense is to, not only change your password, but to also change all "secret questions" and "answers." And the major email clients like Hotmail/MSN, Yahoo Mail, and probably GoogleMail as well, are now offering free services in which you can give them your cell phone number and they text you a secret code to allow you to get back into your email if the hacking locks you out.

Second, always "log out" of your email when you exit, rather than just hitting the exit X. Hitting the exit X doesn't end your email session, only logging out actually shuts it down. If you just press exit, that leaves it available to be hacked because technically, it's still open, even after you've gone.

Third, since most hacking is done through your address book, temporarily delete all contacts in your address book. Some sources advise leaving it this way for a week or more --- I think that's a matter of judgment. I deleted my address book several months ago after I was really badly hacked and oddly enough, have found that for the most part, I really can live without it. And the good news is that since I've deleted it, I haven't been hacked.

Sadly, getting a new account isn't really the answer, because the new account can just as easily get hacked some time in the future as well.

That last bit of information is the really bad news, and that is, many times your account is hacked by someone stealing your account information. And they use it from a totally separate location to send out the infected emails. So, since the problem isn't connected with your system, there is nothing you can do on your system to change it. And even changing your email wouldn't help because the hacker can still continue to send out infected emails from some other location, but using your old email information. The only way you might possibly be able to control it might be if there was some way to actually "cancel" or "delete" your email account. And even then, it may be possible for those phony emails to continue to go out.

 

[mckillwashere]

That last bit of information is the really bad news, and that is, many times your account is hacked by someone stealing your account information. And they use it from a totally separate location to send out the infected emails. So, since the problem isn't connected with your system, there is nothing you can do on your system to change it. And even changing your email wouldn't help because the hacker can still continue to send out infected emails from some other location, but using your old email information. The only way you might possibly be able to control it might be if there was some way to actually "cancel" or "delete" your email account. And even then, it may be possible for those phony emails to continue to go out.

A little further detail about this is there are several Linux(as well as Windows and Mac) applications that allow you to send emails as literally anyone. You dont even have to open a link, or put your email address in anything. One method is mass spamming and the "hacker" or "spammer" will use email address that didnt return a mailer daemon return.

 

[Corrine]

Third, since most hacking is done through your address book, temporarily delete all contacts in your address book. Some sources advise leaving it this way for a week or more --- I think that's a matter of judgment. I deleted my address book several months ago after I was really badly hacked and oddly enough, have found that for the most part, I really can live without it. And the good news is that since I've deleted it, I haven't been hacked.

Imperfect1, if the computer is infected with a worm, the solution is removing the worm, not deleting the address book.

That last bit of information is the really bad news, and that is, many times your account is hacked by someone stealing your account information. And they use it from a totally separate location to send out the infected emails. So, since the problem isn't connected with your system, there is nothing you can do on your system to change it. And even changing your email wouldn't help because the hacker can still continue to send out infected emails from some other location, but using your old email information. The only way you might possibly be able to control it might be if there was some way to actually "cancel" or "delete" your email account. And even then, it may be possible for those phony emails to continue to go out.

If the account is reclaimed, password changed, then access to the account is no longer possible. (Note: A keylogger on the computer is a different matter.)

 

[Imperfect1]

Imperfect1, if the computer is infected with a worm, the solution is removing the worm, not deleting the address book.

I appreciate what you're say Corrine, and I did run quite a few scans at the time, using Malwarebytes, TrendMicro and Avast. None of the scans turned up anything (which is fairly typical with this kinds of contact list/address book hacking). The problem occurred frequently over a period of months, with my email continually sending out bogus (infected) emails to everyone on my contact list. The only way to stop it was to delete the contacts --- and that worked!

 

[Fayla]

Since you seem to have covered the common bases, do you ever connect your computer to wifi hotspots? Also, if there are any privacy options built into Hotmail (I don't know for sure), you should check what your Hotmail profile is sharing publicly and maybe reconfigure it to be more secure.

Imperfect1, if the computer is infected with a worm, the solution is removing the worm, not deleting the address book.

I appreciate what you're say Corrine, and I did run quite a few scans at the time, using Malwarebytes, TrendMicro and Avast. None of the scans turned up anything (which is fairly typical with this kinds of contact list/address book hacking). The problem occurred frequently over a period of months, with my email continually sending out bogus (infected) emails to everyone on my contact list. The only way to stop it was to delete the contacts --- and that worked!

 

[Corrine]

Good point, Lost Colonist. Fortunately, Hotmail has covered it covered!

As included in the previously-linked Hotmail Security to Protect and Recover Your Account:

Single-use codes
For times when you will be using a public computer (i.e., at an internet cafe, airport, coffee shop), All it takes is clicking "request a code", and a one-time use authentication code will be sent to a private proof point (mobile phone or alternate e-mail address). By using a single-use code on a public computer instead of your password, you avoid the chances of it being stolen by key-loggers.

In addition, the promised HTTPS Encryption was added in November: Hotmail Now Includes Full-Session HTTPS Encryption