Slashdot Mirror

← Back to Stories (view on slashdot.org)

Massive Phishing Campaign Hits Multiple Email Services

Posted by Soulskill on from the nowhere-to-run-to-baby dept.

nandemoari writes "It seems as if the massive phishing campaign reported yesterday was not specific to Hotmail, as was initially believed. According to a report by the BBC, many Gmail and Yahoo Mail accounts have also been compromised. Earthlink, Comcast, and AOL were also affected. While the source of the latest attacks has not been determined, many are pointing to the same bug that claimed at least 10,000 passwords from Microsoft Windows Live Hotmail. Microsoft has done their part in blocking all known hijacked Hotmail accounts and created tools to help users who had lost control of their email. An analysis of the data from Hotmail showed the most common password among the compromised accounts to be '12345.' On their end, Google responded to the attacks by forcing password resets on the affected accounts."

20 of 183 comments (clear)

  1. Wow! by Anonymous Coward · · Score: 5, Funny

    An analysis of the data from Hotmail showed the most common password among the compromised accounts to be '12345.'

    That's amazing. I've got the same combination on my luggage.

    1. Re:Wow! by Anonymous Coward · · Score: 2, Funny

      Saved by 123456!

      Take that haxor!

    2. Re:Wow! by Havokmon · · Score: 2, Funny

      So he top posted. How appropriate.

      --
      "I can't give you a brain, so I'll give you a diploma" - The Great Oz (blatently stolen sig)
  2. HA! My password is 123456 by objekt · · Score: 4, Funny

    With an extra digit for security! ;-)

    --
    -- Boycott Shell
    1. Re:HA! My password is 123456 by ballpoint · · Score: 4, Funny

      Mine is 123455. I have appended a checksum digit to make sure I don't enter a wrong password by mistake.

      --
      Flourescent (adj): smelling like ground wheat.
  3. 12345? by Zortrium · · Score: 2, Funny

    That's the kind of thing an idiot would have on his luggage!

    1. Re:12345? by FJGreer · · Score: 2, Funny

      But that's what's on my luggage!

      --
      Behold! Uh, what was I going to say?
  4. Strong password by war4peace · · Score: 3, Funny

    See, that's why they got their accounts hacked. I use 67890 on all my accounts so I'm sure they'll never get hacked :)

    --
    ...gis sdrawkcab (usually not responding to ACs; don't bother posting as AC)
  5. I have a real programmer's password by Biff+Stu · · Score: 4, Funny

    012345

    1. Re:I have a real programmer's password by 93+Escort+Wagon · · Score: 2, Funny

      012345

      That's why Microsoft thought "12345" was a reasonably secure password - they figured most hacking and phishing attacks would be coming from Linux or BSD boxes, so those people would never think of starting to count with a "1".

      --
      #DeleteChrome
  6. I don't know.... by Random2 · · Score: 4, Funny

    This all sounds a bit....phishy to me.

    --
    "Our goal each year should be to increase the number of goals we set for ourselves!"
  7. Remind me by Dareth · · Score: 4, Funny

    "Remind me to change the password on my luggage!"

    --

    I only look human.
    My mother is a halfling and my dad is an ogre, so that makes me an Ogreling
  8. Re:Where are the details? by John+Hasler · · Score: 3, Funny

    > ...how do I know if I've been affected?

    Are you a fool? If not you are ok.

    --
    Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
  9. Re:Ban them. by Killer+Orca · · Score: 3, Funny

    People with "12345" or similar passwords should get their own internet, where they would be allowed to share lolcatz and powerpoint chains, play with their purple internet buddy, and zap those cute webmonkeys on banners without hurting themselves. Alternatively, maybe the webmail providers should set more strict rules for the passwords.

    Hey I play with my purple internet buddy each time I go on the computer and have never hurt myself or anyone else!

  10. Re:Ban them. by ibsteve2u · · Score: 5, Funny

    People with "12345" or similar passwords should get their own internet, where they would be allowed to share lolcatz and powerpoint chains, play with their purple internet buddy, and zap those cute webmonkeys on banners without hurting themselves.

    Didn't they use to call that "AOL"?

    --
    Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
  11. Re:Where are the details? by jim_v2000 · · Score: 4, Funny

    Ah, but only a great fool would fall for such an attack, and I am no great fool, so clearly I cannot click the link. But you must know that I am no great fool and thus I cannot not click the link....

    --
    Don't take life so seriously. No one makes it out alive.
  12. Re:Preaching to the church by Anonymous Coward · · Score: 2, Funny

    Real grammar nazis also know that it wasn't a sentence.

    I love you. Will you marry an anonymous coward?

  13. Re:Preaching to the church by clone53421 · · Score: 2, Funny

    Your Relationship with Anonymous Coward (666)
    Sorry, this is not an option.

    Doesn't look like it. Sorry.

    --
    Alexander Peter Kristopeit bought his basement from his mommy for one dollar.
  14. 31415 by bzzfzz · · Score: 5, Funny
    News Flash: 10,000 Slashdot accounts compromised in phishing scam. Most common passwords were 31415 and 0xdecafbad.

    Affected users have been placed on an isolated network where they can't do anything but post whinges about Microsoft and Apple to a web server that runs SSL using a self-signed certificate and actually follows the RFCs.

  15. Re:What I don't get... by John+Hasler · · Score: 2, Funny

    > The fact that it's a free email account shouldn't mean you're allowed to set
    > your password to *anything* you want.

    And one of the things you should not be able to set it to is anything anyone else has already used. In other words, on these systems passwords should be unique.

    --
    Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.