Spam gets personal

Email
Print

Fri, 13 Aug 2010 4:57p.m.

The number of real email accounts being compromised by spam is on the increase

The number of real email accounts being compromised by spam is on the increase

By David Farrier

There’s a growing trend down under of unwanted emails being sent from personal email accounts.

Often spam is sent from a bogus email address, but the number of real accounts being compromised is on the increase.

Last night, someone in china logged into my personal email account and sent this to everyone in my address book.

“Last week, I have ordered china product Apple iPad 64GB

This website: dhsellso.com

I've received the item today, it’s amazing!”

I wasn't in China, and I don't own an Ipad. But like lots of other kiwis I've had my email account hijacked to send spam.

Tim Nixon is another victim of spam.

“It all happened really fast, I got a few emails and texts saying "have you changed your profession?" and surely enough there was access from china,” he says.

Netsafe spokesman Martin Cocker says this surge in spam is relatively new.

“There seems to be a trend in using stolen email accounts for advertising, that’s quite recent,” he says.

Mr Cocker says the spammers rely on people trusting emails they get from friends, even if the English is questionable.

“You've always been able to spoof someone’s email, but in this case people are accessing accounts so they can send emails to that persons friends,” he says.

Mark Piper is an IT security consultant in Wellington and says the last 2 weeks have seen a large rise in Yahoo, Hotmail and Gmail violations.

“Yeah well we think this information has been gathered through virus's over the last year and just now software has logged into all these accounts and attacked,” he says.

He adds that personal email accounts are now a logical target for hackers.

“There’s lots of info in email accounts for a start, so people store lots of stuff that’s important to them. They’re also used to reset other passwords, so [they are] useful for information like that,” he says.

Most hackers rely on people being naive or stupid; just consider the 5 most popular passwords of all time:

123456, password, 12345678, 1234 and pussy.

As for me, I've annoyed about 200 friends by spamming them, so have changed my password to something more complicated than pussy.

3 News

Become a fan of 3 News on Facebook and on Twitter.

Post a Comment

Before commenting, please take the time to read our moderation guide


(Won't be published)



Comments

22 Aug 2010 03:20p.m.

Seth wrote:

A friend of mine on AIM was hacked this way and ended up sending out IMs about super cheap iPods. Another friend of mine, also on AIM, was hacked and sent out emails the same way. All of them had horrific grammar and spelling, sent links, and just responded with more spam. Nobody will ever guess my password. It's worked for me for a very long time, now.

22 Aug 2010 09:04a.m.

Rrrowlf wrote:

I was listening on the way home... ...I thought it was 'bitch'.

17 Aug 2010 01:45p.m.

Dale H. wrote:

people should say there password 50 in there brain. thats how I remember mine. also if anyone uses pussy as the password they must not have had it.

16 Aug 2010 02:24p.m.

raytracer wrote:

Nothing's more complicated than pussy!

16 Aug 2010 02:15p.m.

Daniel Chong wrote:

Heh, wasn't expecting the fifth most common password.

16 Aug 2010 12:09p.m.

Fred wrote:

This kind of attack has been very prevelant in hotmail based systems, and doesnt just require a simple password, mine is very complex, but was hit by a Trojan from another friend because of spam through their IM service. The message contained a link and whilst i dont usually click this, i happened to do this one, and it constantly flooded my IM contacts with spam and emails, until i removed it, and because it was already on my computer, changing the password doesnt help until you can clear it out.

16 Aug 2010 12:07p.m.

Paul Gemmell wrote:

I also was a victim of the same spammer.