Yahoo, BTInternet and Hotmail accounts hacked into to send SPAM and Phishing

Ref: 149

Date: Fri 26/Apr/2013, 17:38
Contact details: Ken Good

Many Yahoo, BTInternet and Hotmail email accounts (and most probably others too) have been hacked into this year and many emails sent to those in the contacts lists, causing problems for the owner of the email account and all the people they have in their contacts list. These hackers write programs to keep on trying obvious passwords using words from the dictionary and obvious names plus combinations of numbers. You could change your email address and go through all the hassle that brings with it but they will inevitably find your email address again and the same thing will happen. This is what you can do about it:-

Make your password more secure by:

1. Using at least 10 bytes.
2. Do not use obvious words.
3. Use upper and lower case letters and not necessarily only at the beginning of individual words.
4. Intersperse the letters with numbers and not merely add "123" at the end.
5. Use special characters interspersed in your password, if your email provider allows this, like for example £$%^&*.
6. Change your password at least every 6 months.

Report the occurrence to your email hosting company by:

1. Finding the email address of your email hosting company.
2. Forwarding one of the emails which have been sent out to them ensuring you include the Headers of the email. To do this on Outlook go to File / Info / Properties and copy all of the information in "Internet headers" and past this in your email to your email hosting company. The email without the headers will not tell your email hosting company where the email actually came from and they will be able to do little about it. The headers contain the IP address of the sending location and they are unique across the world.
3. Ensure you set your email to be notified when the email you send is read (if your email system allows you to do this).
4. Follow up with your email hosting company if you do not hear from them.
5. If you have received a SPAM or Phishing email which is apparently from someone you know then do your duty and report the issue to the email hosting company it came from.
6. Ensure you urge your email hosting company to block IP addresses where the emails are being sent from.

BUT, and most importantly, choose an email provider that has a secure email facility. We provide this facility for websites we host. If you are looking for a personal email address then Google's Gmail is a good one to choose, available here https://mail.google.com.

If you copy and paste the IP address of the sender which can be found in the Internet Headers of the email you have received, into the "Additional IP Details" field of www.whatismyipaddress.com you will see where the email was sent from in the map of the world.

If we all work together, doing our bit for the society we live in, we will reduce the issues relating to SPAM, Phishing, fraud, and crime and make the Internet a better place to be.