04-02-2014 12:02 PM
This happened with my @sbcglobal.net email.
Looking for some help and explanations of what happend, how, and how to prevent it again.
I regularly change passwords, and have done all the virus scanning and other steps recommended by ATT support. There was nothing found that indicated any problems.
This past weekend, spams were sent to many people that I've sent e-mails to. At first I thought my contacts were stolen somehow, but it turns out several of the intended recipients were not in my contacts, their addresses did exist in my sent folder.
None of these spams showed in my sent folder.
I found out about it three ways:
1) one of the recipients was a Yahoo group that I use. It got the message and forwarded it to me since I am on that list. So I spammed myself, indirectly.
2) several of the recipients let me know
3) I happened to look in my spam folder and found 6 or 7 of the spams that had been returned to me by the spam filters of the recipients.
I did save one of the spams that were resent back to me and have copied this info:
From Mail Delivery System Mon Mar 31 02:46:22 2014
X-Apparently-To: my address 126.96.36.199; Mon, 31 Mar 2014 02:46:24 -0700
Received-SPF: none (domain of out.smtpout.orange.fr does not designate permitted sender hosts)
lots of stuff
Authentication-Results: mta1204.sbc.mail.gq1.yahoo.com from=orange.fr; domainkeys=neutral (no sig); from=orange.fr; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO out.smtpout.orange.fr) (188.8.131.52)
by mta1204.sbc.mail.gq1.yahoo.com with SMTP; Mon, 31 Mar 2014 02:46:24 -0700
From: "Mail Delivery System" <MAILER-DAEMON@orange.fr>
Date: Mon, 31 Mar 2014 11:46:22 +0200
To: my address
Subject: Undelivered Mail Returned to Sender
04-02-2014 5:44 PM - edited 04-02-2014 5:49 PM
Change your password. Update your security information (security questions). Be wary of websites you visit that asks for your email address/personal information. Some websites masquerades as legit websites (and does it really well an average person wouldnt know the difference) asking you for a survey or asking you to subscribe to a newsletter etc. If you frequent public places to access the internet like public libraries, internet cafes etc, you are also in danger of losing your login information because public computers may have keyloggers (basically it tracks what you type on the keyboard and a hacker figures out your email/username/password using those information). Internet security suites and anti virus can help, but awareness and vigilance works best. The reason why most emails are hacked, aside from identity theft, is they convert your working email into a "botnet" email which basically sends spam mails which usually contains links to phishing websites that attempts to hack your contacts as well as advertisements. The mailer daemon stuff you keep getting are simply "error messages. It occurs when an email is sent to an email address that are invalid, or the recipient's server blocked the email that has been sent because it's been caught by the server's spam filter etc.
04-02-2014 6:45 PM
It is also possible that you have not been hacked, but that your e-mail has been mined from someone else's e-mail, or a mail list or forum along with the e-mails of some people you know.
I don't need to know your password to send an e-mail that appears to come from your e-mail address. If I send an e-mail "from you" to an invalid e-mail, then you get the bounce-back.
04-02-2014 7:19 PM
04-02-2014 7:42 PM - edited 04-02-2014 7:44 PM
The biggest hit on this is when others send out global emails that were forward some someone else and from someone else, and from someone else,,, AND to be sure that it is FW: on too save the day, etc ,etc, etc. Before you know it, one rough email is now in thousands of mail boxes. Do open this type of e-mail, just delete.
AND do not open any email that has Re: in the subject unless you know the person that "you" sent an email too.
Just a few of many things not to do.
04-02-2014 8:24 PM
The e-mails went to 20 or so adresses that I've sent to in the past. Most were in my contacts, some were not. At least one was an recipient that I only used once. Others were people that had changed email addresses long ago, but I still had an old Sent message to them.
I understand that my address can be pasted into a "From" field. But I don't know how such a wide range of addresses were taken from me. There were never any cases where I would have sent a single email to that combination.