Announcements

For the latest on our response to Coronavirus (COVID-19), click here.

Contributor

 • 

3 Messages

Wed, Jan 30, 2019 2:38 PM

E-mail account hack

We have received an e-mail from our own address threatening to lock our device in 48 hours if we don't pay hacker in Bitcoin.  Says he has access to our contact list, history and files.  We have changed our password several times in the past month in response to some e-mails from our contacts saying they have received false invoices from our e-mail address.  The hacker says he installed a trojan on our device and made full dump of our disc.  We do have security on several of our devices but not on phones that we access e-mail with.  Is this something we should be worried about?  Any suggestions on what we can do?

Responses

Accepted Solution

Official Solution

_xyzzy_

ACE - Expert

 • 

15K Messages

a year ago

As I said, no.    I just trashed mine and moved on.  The only thing you know now is your email address is out in the wild, but then you would already have known that by the "invoices" phishing you mentioned.  So you can probably expect more spam/phishing emails in the future (addresses are spread/sold on lists to spammers all over the world in time), not really that extortion kind of spam, just spam of various annoying kinds (loans, dept, meet Russian girls, CBD, wines, etc. -- but everybody's spam is more-or-less different in categories).  The email service can mitigate some of this depending on how aggressive their spam filters are but the spammers are always trying to find ways to get around the various service's filters. 

 

I've had my same email address since the 90's (not an att address) and given that amount of time there's is really no way to keep it a secret so I get some spam almost every day in my spam folder.  But I can control it (currently 0-2 per day -- I use a different email service) so it doesn't bother me.  It's just life in the internet age.

___________________________________________________

This is a public forum and I am a customer just like you. Click "Like" if you feel this post is helpful and "Accept as Solution" if it solves your problem.

Award for Community Excellence 2019 Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.
_xyzzy_

ACE - Expert

 • 

15K Messages

a year ago

Others have gotten that one too (I got one a month or two back, and its not just att users).  It's phishing (extortion actually).  They have nothing.  Just trash it. 

 

As for the false invoices I believe that has nothing to do with the extortion.  Just like the person who sent you that extortion used your email address to spoof the sender name other spammers probably have it too.  It's not clear how they got it.  Maybe you slipped up at some point and posted it or maybe one of your contacts was hacked and got their contacts list and you were on it.  Also are those false invoices copies of actual invoices you send out?

___________________________________________________

This is a public forum and I am a customer just like you. Click "Like" if you feel this post is helpful and "Accept as Solution" if it solves your problem.

Award for Community Excellence 2019 Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.

Contributor

 • 

3 Messages

a year ago

We do not send out any invoices from our e-mail so the invoices could not be copies.  None of our contacts actually opened up the attachments to our knowledge.
_xyzzy_

ACE - Expert

 • 

15K Messages

a year ago

Ok, so the invoice spamming/phishing is just that, spamming/phishing, using your email address.  It has nothing to do with your original problem which is what I said previously.

___________________________________________________

This is a public forum and I am a customer just like you. Click "Like" if you feel this post is helpful and "Accept as Solution" if it solves your problem.

Award for Community Excellence 2019 Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.

Contributor

 • 

3 Messages

a year ago

Thanks again.  So you don't think the extortion is anything to worry about either?

Contributor

 • 

2 Messages

7 months ago

Our e-mail account was hacked, now I cannot access any mail past date of hack. How do I dump that address and open new one? I fear the hackers are in my computer & will be gaining access to my "stuff". What do I do?

 

_xyzzy_

ACE - Expert

 • 

15K Messages

7 months ago

Why not fix the hack instead?  If your account is compromised you can't change your email address or create a subaccount anyway.

 

Here's my standard list of things to do if you suspect someone actually got into your webmail account.

 

  • Change your password and security questions. The link I supplied allows you to change the password three ways; using your security questions, using your recovery email address, or by snail mail.
  • Log into your webmail through start.att.net and click the settings gear->more settings. In there you will see a number of commands on the left. The ones that need checking are Mailboxes, Filters, and Security and Privacy.
  • Mailboxes. Click that and choose an account in the Mailbox list to bring up that account's settings panel on the right. Check the name and reply-to address and see if it is suspicious. Blank it out if you don't want that set. Check the forwarding setting and make sure it is blank or what you want. Check the other settings there as well. When you are done click the Save button at the bottom to update that account's settings.
  • Filters. Look for suspicious filters and subtle filter names like '.' (a dot) or ':'. Remove them and click the Save button.
  • Security and privacy. Make sure no addresses are defined who's email you don't want blocked. Click Save to update those settings.
  • Contacts list.  While it doesn't affect the running of the webmail it's still good to check to see if everything you expect is there.  If you contacts are gone you may be able to restore them clicking on the Contacts Actions in the toolbar and selecting "Restore from backup...".

___________________________________________________

This is a public forum and I am a customer just like you. Click "Like" if you feel this post is helpful and "Accept as Solution" if it solves your problem.

Award for Community Excellence 2019 Achiever*
*I am not an AT&T employee, and the views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.
AT&T TV – All Your Entertainment In One Spot.  Learn more…