Intrinsic

time to up the passwords.. had an 8char that lasted a while

some IP in ecuador got into my account and was sending all my contacts a pharm link

only way I knew this was I was getting a shitload of undeliverables in my inbox

O well, gfy yourself hacker

wehateporn

Probably a keylogger

__________________

papill0n

you got it back yeah ?

XPays

happened to another person i know today too. maybe it's not an isolated incident.

__________________
InterNext Expo Domain Auction Live Now thru Feb 5
HuntingMoon GFY Domains Marketplace is LIVE
XPays always pays! Top Site: * RealJasmine.com * + HotelHeiress® with The Paris Hilton Sex Video
Insert the HotelHeiress® HD FEED into your members areas
XPin.com Opening for Pin Partners Soonish
Mainstream Offers For Emailers and DomainersNONADULT.COM


Like Us!

brassmonkey

metaman has one for sale lol

__________________
TRUMP 2025 KEKAW!!! - The Laken Riley Act Is Law!
DACA ENDED - SUPPORT AZ HCR 2060 52R - email: brassballz-at-techie.com

Dejan

shit happens

__________________
Convert your East European traffic

WiredGuy

I know someone who had that happen as well. Make sure you have your cell number within Google Gmail and you'll get your account restored when they verify you are the account holder. If you don't have a cell number in there, good luck getting it back.
WG

__________________
I play with Google.

seeandsee

It can be million tricks how they got in, but try to find out what they used and prevent yourself from such attacks

__________________
BUY MY SIG - 50$/Year

Contact here

Intrinsic

i think i have it setup.. i went in to check and got hit with this (looks like gmail has its own protection):

This account has been locked down due to unusual account activity. It may take up to 24 hours for you to regain access.

Unusual account activity includes, but is not limited to:

Receiving, deleting, or downloading large amounts of mail via POP in a short period of time.
Sending a large number of undeliverable messages (messages that bounce back).
Using file-sharing or file-storage software, browser extensions, or third party software that automatically logs in to your account.
Leaving multiple instances of your Gmail account open.
Browser-related issues. Please note that if you find your browser continually reloading while attempting to access your Inbox, it?s probably a browser issue, and it may be necessary to clear your browser?s cache and cookies.

ottopottomouse

Hope you didnt have the password to anything else sat in there.

__________________
↑ see post ↑
13101

thickcash_amo

damn that sucks

__________________

kristin

This makes Meta Man's thread funnier.

__________________
Vacares rules.

"Usually only fat guys have the kind of knowledge and ability that Kristin has."

Dejan

Found HIM!

https://gfy.com/showthread.php?t=1019888

__________________
Convert your East European traffic

Chosen

It sucks indeed...

HomerSimpson

use RoboForm

__________________
Make a bank with Chaturbate - the best selling webcam program
Ads that can't be block with AdBlockers !!! /// Best paying popup program (Bitcoin payouts) !!!

PHP, MySql, Smarty, CodeIgniter, Laravel, WordPress, NATS... fixing stuff, server migrations & optimizations... My ICQ: 27429884 | Email:

twistyneck

Same thing happened to me today too. Fucking hell.

BradBreakfast

YOU GUYS AREN'T USING INTERNET EXPLORER ARE YOU?

My guess.... Drive-by download keylogger: If you had activated Google Authenticator as soon as it became available [Like I Did], which is free BTW and ran an Intrusion Prevention System such as ThreatFire (also free) ... this wouldn't of happened.

Threatfire protects against known and 0day exploits: http://www.threatfire.com/

Google Authenticator: 2 factor login: http://www.google.com/support/accoun...opic=105628 4

Sometimes Threatfire will alert on false positives, like your web browser and instant messaging program as there is a short training period. (Just look at the .exe trying to communicate with the network and you should be able to tell if it's legit (firefox.exe, icq.exe) or non-legit (ufygsdft.exe, pornodownloder.exe).

When you browse "fucked up websites" use a sandboxing program such as SandBoxie to load a sand-boxed browser that loads in a secure, virtual environment.

http://www.sandboxie.com/ or a HIPS (Host Intrusion Prevention System) such as DefenseWall: http://www.softsphere.com/programs/

But who said you were attacked by a Windows trojan? What if it was a trojan horse on your mobile smartphone you downloaded from a non-legit "app store"... unlikely but that's also an attack vector. #JustSayin'

Houdini

Crazy, I had it happen to me today too. My entire contact list and basically anyone I've ever sent an email to, got one. Also a pharm link. IP was from France. I was logged into gmail when a few emails were coming back. Immediately, I checked the IP list, saw someone from France had just logged in and I quickly changed the password and logged out. Was able to login fine and looks like it's ok now. Bastards!

Ayden Rush

Use 2-Step verification. It completely defeats keyloggers, for GMail anyway.

twistyneck

Nope. I'm on a Mac and I never use a phone to check my email.

twistyneck

I checked my Google account and it said there was a login from a mobile user in Sweden.

Is this the same link you guys are seeing?

http://xewopiqi.t35.com/

BradBreakfast

Poor bastards. I use HIPS at the desktop endpoint and have a SNORT sensor to block and alert me of suspicious activity/traffic on my home network.

Houdini

Yep, same thing for me. The IP found in my account was in France also through a mobile user. Different sub-domains were used in multiple messages, but same domain.

twistyneck

I guess this is a pretty widespread event then. I wonder if Google knows (or cares) about it.

BradBreakfast

They don't.

Darkhorse

Mine has been hacked to fuckers.....

Bosnia And Herzegovina (77.221.17.199)

TeenCat

so you are not the only one webmaster with the same site spammed? looks like some adult database was compromised, and you guys have same password there and to your emails also, oops ... lets get that crap solved

__________________

Konda

This seems to be quite huge. I got a quite some random webmasters sending me these type of links "http://daxohazo.t35.com/" so it seems quite some users are affected. Is it only happening to adult webmasters? Maybe some big program's user database has been hacked and these people use the same password for their gmail?

Darkhorse

Well could be possible, I do use same password (and for gmail) for most programs not all but for the most part I do.

Konda

NEVER EVER use the same password for your email that you use on other sites. That is asking for trouble. You never know who has access to the passwords you use at sponsors and other sites.
Use LastPass and use random passwords for every single site where you create accounts. I don't even know my own gmail passwords, it's some random string.

taken300

Basically people use "keyloggers" to hack accounts... You need to change your password every after 1 month and use a long and alfanumeric password... I had a chat with a guy who was selling 1000's of gmail and yahoo hacked account password and 100% original. Always give a check to .exe files when you download via internet.

__________________
Search Engine Optimization Services - Mainstream and Adult !!
Submission to 100 Adult Link Dump Sites- No reciprocal link required
100 Animoto Videos + Youtube Upload + 1 website link every video = $110

I*C*Q : 374*04124*3
S*k*y*p*e : arde*ndo*1
G*t*a*l*k : seo*joint*@gmail(dot)com
(remove "*")

Sex Cams Free Sex Cam Sex Cams

Darkhorse

Ya I know, to late when it happens to you but once is enough of fuckaround to make me not want to do it again.

lol and now the abusive email replies are coming in from the people these fuckers spammed.

Konda

Since it also happened to Mac user and since it seems like many webmasters are affected I don't think it's a keylogger issue. It seems more like some sponsor's user database has been hacked and these users had the same password for their gmail account as they had at that sponsor.

Zyber

Also install the newest version of JAVA. Remember to uninstall all the older versions.

Many drive-by installs happen directly through your browser - even if you don't click to download anything.

So update Java, and remove old versions
http://www.java.com/en/download/help/java_update.xml

TeenCat

people, as written before, it is not about your computers security, but it is hacked database sure, as many times in the past and many times in the future. no more doubt are needed, you just have to be more careful in choosing your passwords ... have luck and go through this drama everyone

__________________

Zyber

You might already have a root kit hidden on your computer, so better to get rid of that first!

TeenCat

shame is that those companies who are hacked will never ever say that they got hacked and some time they do not care, i have reported some dangerous security holes to some companies in the past, but only one says thanks and some even dont fucking care and keep the holes opened ... dont trust anyone, trust yourself and do your best to keep safe, use different passwords to anywhere where its needed to be safe ... just wanted to say, have a nice day and surf safe everyone

__________________

PSD

Got the same spam, from the looks of the people in the To field it looks like at least some of the spam is to the list of affiliates that Mark Bauman of NA mistakenly put in the To field instead of the BCC field of the email he sent out when he departed NA over two years ago - that and the From shows Mark Bauman - probably forged.

Vjo

Good info, thanks

I checked this page for older versions:

http://www.java.com/en/download/uninstall.jsp

and indeed I have one from 2007 on there. Look in Settings/Control Panel/Programs and Features to see if any old versions of Java exist or go to the above page and it will tell you:

"We have detected the following old versions of Java that are installed on your system:

* Java(TM) SE Runtime Environment 6 Update 1

These should be removed to ensure your system security."

Cool beans.

Dejan

yup mine got hacked too
Mobile Malaysia (115.133.10.67) 9:18 am (3 hours ago)

probably some programs db got hacked... had the same password for gmail and some sponsor sites....

__________________
Convert your East European traffic

miroz

I've got the same problem.
Someone had access using mobile agent from India, Czech and Thailand during 5 minutes.

__________________
TommyPimp.com - my favorite celebrity program
Buy traffic

miroz

Is this problem only with Gmail accounts?

__________________
TommyPimp.com - my favorite celebrity program
Buy traffic

Darkhorse

Looks that way so far.

D Ghost

Happened to me yesterday too, same thing pharm....

Cyber Fucker

Did you have there 2674 webmasters contact list by a chance?

__________________

PornHustler

I just found out I had the same thing happen to me. Fucking t35.com thing. I am thinking it was with my phone but I dont know. I ran ccleaner on my home computer and going to see if that kills it. I changed my password on gmail afterwards.

__________________

Intrinsic

Well yeah im on a mac.. wow didnt realize it was affecting so many others, yes and t35.com as well, what the hell

maybe this has something to do with the PSN hack? i dont have a PS3 but might have checked my email on it some time

taken300

Interesting... However if you search for keyloggers for mac or windows or linux.. You can find any number.. And also when people add or download some freely available program and run it.. most of cases these programmes carry active virus.

__________________
Search Engine Optimization Services - Mainstream and Adult !!
Submission to 100 Adult Link Dump Sites- No reciprocal link required
100 Animoto Videos + Youtube Upload + 1 website link every video = $110

I*C*Q : 374*04124*3
S*k*y*p*e : arde*ndo*1
G*t*a*l*k : seo*joint*@gmail(dot)com
(remove "*")

Sex Cams Free Sex Cam Sex Cams

PenisFace

Some filthy bastard from China hacked my oldest gmail account about 6 months ago. Fortinutely it was used purely for signing up for automotive message boards, gaming boards, and other hobby related stuff. I was quite shocked when I logged in, and among the 50,000,000,000 spam emails was a warning, "omg lol u hacked sry bro".

I make new gmail accounts all the time though, i prefer fresh ones. Damn chinese guy can have it.

__________________
Need custom blog posts or articles? Hit me up: Blog And Article Writer

Yes, I can do any kind of custom orders, too!

ICQ: 641204000