Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: Hotmail account detail posted online.

  1. #1

    Hotmail account detail posted online.

    A report on technology blog neowin.net said that the details of "over 10,000" accounts had been posted to a website.

    The blog suggested the accounts had been hacked or had been collected as part of a phishing scheme.

    Phishing involves using fake websites to lure people into revealing personal details such as bank accounts or login names and passwords.
    Source : http://news.bbc.co.uk/2/hi/technology/8291268.stm

    http://www.neowin.net/news/main/09/1...-leaked-online



    By no means does it mean that Microsoft's (Hotmails / Live's) server were hacked into. It was a mix of phishing and *possibly* password guessing .. However if it was a server compromise then it's rather embarrassing for Microsoft.

    I'm wondering why it is not on any other website (ISC center).
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  2. #2
    Senior Member t34b4g5's Avatar
    Join Date
    Sep 2003
    Location
    Australia.
    Posts
    2,391
    Greetz.

    I scored myself a copy, pretty scary that a lot of the passcode's were the same for multiple sites .

    this was the biggest accidental release. Pretty amusing because the phish could of got the harvester a nice pay day.

  3. #3
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  4. #4
    Senior Member gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Quote Originally Posted by t34b4g5 View Post
    Greetz.

    I scored myself a copy, pretty scary that a lot of the passcode's were the same for multiple sites .

    this was the biggest accidental release. Pretty amusing because the phish could of got the harvester a nice pay day.
    LOL no it wasn't !

    This isn't something you'll find on their history page or anything, but back in the early days, When Microsoft was getting ready to go public with their website, someone accidentally sat on a keyboard, and published the un-finished, not ready, un-tested version of their first website, BY SITTING ON THE KEYBOARD!

    I always thought it was funny, given Microsoft's History, that their first web site was published with someone's ass. Which is apparently where a lot of their desktop OSs came from

  5. #5
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,187
    Quote Originally Posted by gore View Post
    LOL no it wasn't !

    This isn't something you'll find on their history page or anything, but back in the early days, When Microsoft was getting ready to go public with their website, someone accidentally sat on a keyboard, and published the un-finished, not ready, un-tested version of their first website, BY SITTING ON THE KEYBOARD!

    I always thought it was funny, given Microsoft's History, that their first web site was published with someone's ass. Which is apparently where a lot of their desktop OSs came from
    Where did you read that gore? I tried searching for it, but couldn't find anything.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  6. #6
    update is that Gmail and yahoo were affected by this too.

    I'd love if anyone could send me some samples. I'm sure everyone got at least one of them.

    Here is one that i had handy.



    X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtTQ0w9Ng==
    X-Message-Status: n:0
    X-SID-PRA: Yahoo Lottery Games/Lottery <admin@finex.org.ph>
    X-Message-Info: 0Lct38uk7fMWQ9vwjuNeVO7S/0nUGZ0i8cAHvYNj7Ja3bUz1RaFR7PU5xzpYu663wA/WODiR6f3B7y530AnCV4yjQghbGG+E
    Received: from smtp3.infocom.ph ([203.172.11.253]) by col0-mc2-f15.Col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.3959);
    Tue, 6 Oct 2009 13:43:34 -0700
    Received: from mail1.infocom.ph (mail.infocom.ph [203.172.25.35])
    by smtp3.infocom.ph (Postfix) with ESMTP id 918C336BA0;
    Wed, 7 Oct 2009 04:43:33 +0800 (PHT)
    Received: from 115.240.31.111
    by mail1.infocom.ph with HTTP;
    Wed, 7 Oct 2009 04:43:33 +0800 (PHT)
    Message-ID: <59406.115.240.31.111.1254861813.squirrel@mail1.infocom.ph>
    Date: Wed, 7 Oct 2009 04:43:33 +0800 (PHT)
    Subject: Congratulation!!!
    From: "Yahoo Lottery Games/Lottery" <admin@finex.org.ph>
    Reply-To: claimsdepartment45@live.com
    User-Agent: SquirrelMail/1.4.10a
    MIME-Version: 1.0
    Content-Type: text/plain;charset=iso-8859-1
    Content-Transfer-Encoding: 8bit
    X-Priority: 3 (Normal)
    Importance: Normal
    Bcc:
    Return-Path: admin@finex.org.ph
    X-OriginalArrivalTime: 06 Oct 2009 20:43:35.0492 (UTC) FILETIME=[ACCA4840:01CA46C5]





    Dear Winner

    We are Pleased to inform you that you have won a prize money of
    (750,000.00GBP) by Msn/Yahoo Lottery inconjunction with the MICROSOFT
    WINDOWS.
    we collects allthe email addresses of the people that are activeonline,
    among the millions that subscribed to Yahoo,Hotmail and various Microsoft
    window users, we onlyselect five people every year asour winners,through
    electronic ballotingSystem without the winner applying

    Batch number.....................YW/08872/PY
    Ref number.......................WL/7662/5AQ
    Winning number...................WZ554/30

    How ever you will have to fill and submit this form tothe events manager

    1. Full name..............
    2. Contact Address........
    3. Age....................
    4. Telephone Number.......
    5. Marital Status.........
    6. Sex....................
    7. Occupation.............
    8.State:.................
    9.Country................
    10.Nationality............
    11.how do you feel has a winner.....

    Your Reference and Batch number at the top of this mail:

    (CONTACT EVENTS MANAGER)
    Name:Mrs. Monica Johnson
    E-mail:claimsdepartment45@live.com

    (Msn/Yahoo Lottery Games/Lottery Coordinator).



    I've copy pasted the way it is. So don't worry about the spelling's and all. They are fraudsters not graduates (most of them).
    Last edited by ByTeWrangler; October 6th, 2009 at 10:59 PM.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  7. #7
    Senior Member t34b4g5's Avatar
    Join Date
    Sep 2003
    Location
    Australia.
    Posts
    2,391
    Byte here's a news article about google 'n yahoo.

    Google and Yahoo! on have joined a growing roster of Web-based email service providers with users duped by hackers into betraying passwords to accounts.
    A day after Microsoft blocked access to thousands of Hotmail accounts in response to hackers plundering password information and posting it online, the list of victims was growing to include users of an array of email services.
    "We recently became aware of a phishing scheme through which hackers gained user credentials for Web-based mail accounts including a small number of Gmail accounts," Google said in response to an AFP inquiry.
    "As soon as we learned of the attack, we forced password resets on the affected accounts. We will continue to force password resets on additional accounts if we become aware of them."
    Cyber-crooks evidently used "phishing" tactics to trick users of free Web-based email service into revealing account and access information.
    "We are aware that a limited number of Yahoo! IDs may have been made public," Yahoo! said in a statement to AFP. "Online scams and phishing attacks are an ongoing and industry-wide issue."
    Time Warner subsidiary AOL, in response to an AFP inquiry, said it is "closely monitoring the situation."
    "Our guidance to users is to keep your wits about you: do not click on live links, or insert any details into input fields in emails, pop-ups or Web pages if you are not sure where they come from."
    Microsoft said it learned of the latest problem during the weekend after Hotmail account information of "several thousand" users, many of them reportedly in Europe, was posted at a website.
    The unconfirmed list of Hotmail accounts compromised by "phishing" has grown into the tens of thousands.
    "We are aware that some Windows Live Hotmail customers' credentials were acquired illegally by a phishing scheme and exposed on a website," Microsoft said. "We have taken measures to block access to all of the accounts that were exposed and have resources in place to help those users reclaim their accounts."
    Phishing is an Internet bane and involves using what hackers refer to as "social engineering" to trick people into revealing information online or downloading malicious software onto computers.
    Phishing tactics include sending people tainted email attachments that promise enticing content such as sexy photos of celebrities and luring people to bogus log-in pages that are convincing replicas of legitimate websites.
    Microsoft, Google, and Yahoo! stressed that hackers did not breach their databases, but rather email users were conned into revealing information.
    "Phishing is an industry-wide problem... exercise extreme caution when opening unsolicited attachments and links from both known and unknown sources, and install and regularly update anti-virus software," Microsoft, a part-owner of ninemsn, said.
    Google advises Gmail users not to "click through" on warnings browsers may raise about certificates nor sign in at Web addresses that don't start with google.com/accounts.
    Web-based email users who suspect their accounts have been compromised should change passwords and check to make certain any secondary email or texting options in accounts have not been changed.
    "We encourage users to be very careful when asked to share their personal information," Google said.
    The email service providers urged people to visit pages at their websites with advice and tools for protecting accounts.

  8. #8
    Senior Member gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Quote Originally Posted by westin View Post
    Where did you read that gore? I tried searching for it, but couldn't find anything.
    I think there used to be a link to it on Wiki, but the only reason I knew it was legit was that at the time, it was hosted on their main Microsoft.com page for a very short while like 5 years or more ago. I think I posted it here once but I really don't remember. I haven't found it since, so it's probably been taken down.

    I used to have a copy saved because it was to good to let go of, but I lost some back ups a while back.

    If I do run across it again I'll post it on here + a screen shot which is another thing they've admitted they probably wouldn't now:

    I once saw a screen shot of Microsoft.com saying that Windows NT 4 servers should ALL be rebooted every 6 weeks or so to fix memory leaks. I wouldn't have believed it had I not seen it myself. I don't have the screen shot of course, but you can probably google that particular one.

    There is a "certain web site" that used to have a copy of the screen shot, but, you can't google it, can't search for it, and the F word is in the name so it won't show up on here anyway:

    ****microsoft.com or something like that. You can guess the part it's going to edit out

  9. #9
    Senior Member
    Join Date
    Oct 2003
    Posts
    149
    How you do read this...
    We are Pleased to inform you that you have won a prize money of
    (750,000.00GBP) by Msn/Yahoo Lottery inconjunction with the MICROSOFT
    WINDOWS.
    we collects allthe email addresses of the people that are activeonline,
    among the millions that subscribed to Yahoo,Hotmail and various Microsoft
    window users, we onlyselect five people every year asour winners,through
    electronic ballotingSystem without the winner applying
    And for one bat of an eye even dare think this is legit?
    I STILL do not understand how stuff like this works IRL.
    Hi.

  10. #10
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    Researcher refutes Microsoft's account of hijacked Hotmail passwords

    Could botnets, keylogging be to blame for password leaks?
    Gregg Keizer


    October 7, 2009 (Computerworld) One researcher isn't buying Microsoft's and Google's explanation that hijacked Hotmail and Gmail passwords were obtained in a massive phishing attack.

    Mary Landesman, a senior security researcher at San Francisco-based ScanSafe, said it's more likely that the massive lists -- which include approximately 30,000 credentials from Hotmail, Gmail, Yahoo Mail and other sources -- were harvested by botnets that infected PCs with keylogging or data stealing Trojan horses.

    More can be found here
    Perhaps wasn't phished as a user error but perhaps the result of a hole not fixed (either by user or by MS)?
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

Similar Threads

  1. Scam Examples
    By foxyloxley in forum Phishing and Cyber Scams
    Replies: 62
    Last Post: November 24th, 2018, 10:55 AM
  2. Windows Error Messages
    By cheyenne1212 in forum Miscellaneous Security Discussions
    Replies: 7
    Last Post: February 1st, 2012, 02:51 PM
  3. Scary: Meth addicts' other habit: Online theft
    By genXer in forum Security News
    Replies: 14
    Last Post: December 23rd, 2005, 09:13 AM
  4. Are Hotmail And Yahoo! Blocking Gmail Invites?
    By yourdeadin in forum AntiOnline's General Chit Chat
    Replies: 12
    Last Post: September 16th, 2004, 10:55 AM
  5. Guest Account Question
    By SDK in forum Microsoft Security Discussions
    Replies: 4
    Last Post: February 26th, 2004, 10:19 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •