Go Back  The Hull Truth - Boating and Fishing Forum > BOATING FORUMS > Dockside Chat
Reload this Page >

We've been hacked ... need assistance

Notices

We've been hacked ... need assistance

Old 08-08-2020, 05:32 AM
  #1  
Senior MemberPLEDGERPLEDGERCaptains Club Member
Thread Starter
 
Join Date: Sep 2004
Location: ATL & SAV
Posts: 12,372
Received 2,007 Likes on 990 Posts
Default We've been hacked ... need assistance

Our email account was hacked into last week. Phishing emails were sent to all of our contacts. What I see going on now is when we send an email to someone and they reply, the reply is not coming back to us but it's going to another web address. This is happening on our Samsung laptop and my Samsung tablet. I can not find anyplace in our systems where we can locate and eliminate this misdirection. Our email is with ATT/Yahoo. What do I need to do to fix this BS?
Old 08-08-2020, 05:43 AM
  #2  
Senior Member
 
Join Date: Jul 2013
Location: N.E. Tennessee
Posts: 511
Received 479 Likes on 207 Posts
Default

You need to change the password on all email accounts. ASAP.
AND
Verify that your computers are virus free.
Sometimes viruses and other nasties will parse files and email storage for addresses and send to some of them from others so that you are not even aware of it happening. Since this is coming from one of your accounts specifically, then the account has been compromised.

Recently a lot of people have been getting extortion e-mails with valid passwords being shown to the recipient. Tese were results of data breeches. You've likely just been caught up in that.
Here is one quick check.
https://haveibeenpwned.com/
Old 08-08-2020, 05:44 AM
  #3  
Senior Member
 
Join Date: Oct 2017
Posts: 732
Received 210 Likes on 128 Posts
Default

I assume you have changed your password. You should be able to login to your Yahoo email account and control forwarding with steps below. Also I would get rid of Yahoo email and switch to Gmail or your domain email. It seems like everyone I know with a Yahoo address has had it hacked before.




Old 08-08-2020, 05:55 AM
  #4  
Admirals Club Admiral's Club Member
THT sponsor
 
williamwallus's Avatar
 
Join Date: Jun 2014
Location: SWFL, Midwest
Posts: 3,466
Received 800 Likes on 443 Posts
Default

^this

Sounds like they set up a forwarder without keeping a carbon copy

They could have also changed the from address

Old 08-08-2020, 06:42 AM
  #5  
Senior MemberCaptains Club Member
 
Join Date: Mar 2005
Posts: 1,589
Received 615 Likes on 322 Posts
Default

You need to call ATT/Yahoo customer service/ fraud and report to your E-mail hack, this happened to me 3 months ago with a different provider, used it to hack into my amazon account and change the password by using I forget my password link. Had to call Amazon and have my account frozen and call my e-mail provider to have the password changed along with changing all my accounts passwords. Good luck, so stressed me out I thought I was going to puke and a nervous wreck for weeks.
Old 08-08-2020, 07:09 AM
  #6  
Admirals ClubCaptains Club MemberPLEDGER Admiral's Club Member
THT sponsor
 
Join Date: Feb 2003
Location: (snowbird in training) Lake Erie Un-salted water and shark free!
Posts: 7,916
Received 868 Likes on 487 Posts
Default

Abandon that email address. Start over. Copy and paste all your contacts to the new one.
A lady visiting across the lane from us runs a small corporate IT security firm. The stories she has been telling will make the hair on the back of your neck stand up.
It’s only going to get worse.
Old 08-08-2020, 07:43 AM
  #7  
Senior MemberCaptains Club MemberPLEDGER
 
Join Date: Jan 2005
Location: Suburb of Sugar Tit SC
Posts: 14,795
Received 9,413 Likes on 5,109 Posts
Default

Are you using the email client on the computer (outlook for instance) or web access?

Change your password, and if you arent' doing anything involving business where calendar integration, etc. is vital, abandon the email clients in favor of web access exclusively.
Old 08-08-2020, 07:45 AM
  #8  
Senior MemberCaptains Club Member
 
Join Date: Aug 2003
Location: Out west
Posts: 3,370
Likes: 0
Received 591 Likes on 295 Posts
Default

Originally Posted by Tireless View Post
Our email account was hacked into last week. Phishing emails were sent to all of our contacts. What I see going on now is when we send an email to someone and they reply, the reply is not coming back to us but it's going to another web address. This is happening on our Samsung laptop and my Samsung tablet. I can not find anyplace in our systems where we can locate and eliminate this misdirection. Our email is with ATT/Yahoo. What do I need to do to fix this BS?
I was a Yahoo email guy for many years. I got hacked and I abandoned Yahoo for gmail. I had to set everything up for my wife with gmail also. That was worse than me. It was a bothersome process of notifications to everyone, changing my contacts over, etc. Took several months to make sure all people were notified. (People including business contacts, government agencies, and countless other personal things)

I do not use a computer anymore. It's all chromebook now. It's all "up in the cloud" for me. We have a computer somewhere that comes in handy from time to time for something or other. I've simplified my life now that I'm retired

I cannot comment on the security or safety of gmail. I get pshished and spammed some like everyone else.

The others have given good advice regarding securing your current email. Consider establishing new emails elsewhere and transitioning away from Yahoo. Good luck.
Old 08-08-2020, 08:38 AM
  #9  
Senior MemberCaptains Club Member
THT sponsor
 
Schmaltz~Herring's Avatar
 
Join Date: May 2002
Location: Cruising Lake Titikacka On My 18' Bayliner~Soon Upgrading to a 45' SeaVee With Quint 450's
Posts: 18,086
Received 1,329 Likes on 678 Posts
Default

Originally Posted by bakerjw View Post
You need to change the password on all email accounts. ASAP.
AND
Verify that your computers are virus free.
Sometimes viruses and other nasties will parse files and email storage for addresses and send to some of them from others so that you are not even aware of it happening. Since this is coming from one of your accounts specifically, then the account has been compromised.

Recently a lot of people have been getting extortion e-mails with valid passwords being shown to the recipient. Tese were results of data breeches. You've likely just been caught up in that.
Here is one quick check.
https://haveibeenpwned.com/

The above link seems to be another money making scam:

';--have i been pwned?Check if you have an account that has been compromised in a data breach
pwned?
I entered turdball@aol.com
RESULTS:

Oh no — pwned!

Pwned on 4 breached sites and found no pastes (subscribe to search sensitive breaches)
Old 08-08-2020, 08:49 AM
  #10  
Admirals Club Admiral's Club Member
 
Join Date: Mar 2005
Location: Inside a storm cloud
Posts: 5,824
Received 355 Likes on 199 Posts
Default

Originally Posted by Schmaltz~Herring View Post
The above link seems to be another money making scam:

';--have i been pwned?Check if you have an account that has been compromised in a data breach
pwned?
I entered turdball@aol.com
RESULTS:

Oh no — pwned!

Pwned on 4 breached sites and found no pastes (subscribe to search sensitive breaches)

It's not. You entered an actual email address.
Old 08-08-2020, 11:02 AM
  #11  
Senior Member
 
Join Date: Jun 2018
Location: Southeast Connecticut
Posts: 587
Received 1,344 Likes on 712 Posts
Default

First...Yahoo mail servers are frequently hacked into on the back end. It's not 100% sure that they got your password. However, for good measure, assume they did.

From a known healthy computer, change your account password. With a good complex one, that you haven't used anywhere else.
Setup multi factor authentication so this will not happen again.

Mail flow rules were either entered on your account side (on the mail server, settings)..or from your email client depending on what you use.

Now that we have that done...MOVE AWAY FROM USING YAHOO. Their mail servers SUCK.
If you need a free residential email account use GMail.
Old 08-08-2020, 12:19 PM
  #12  
Member
 
Join Date: Apr 2016
Location: Texas
Posts: 74
Received 11 Likes on 6 Posts
Default

Some good advice here. I would assume that all of your online accounts have been breached - banking, shopping, investments. If you haven't setup rest those passwords - DON'T DO IT FROM YOUR COMPUTER. From a different computer reset passwords.

Enable two factor authentication on everything. You should already have done this, but the next best time is now. Use an app like Authy or Google Authenticator, not text if possible. If not, text is better than nothing.

Use complex and long passwords. Don't reuse passwords. How is this possible? Password managers like BitWarden. I use completely random passwords for each important site, and store them in a password manager. I login to the password manager, copy the password, and login to the site.
Old 08-08-2020, 03:01 PM
  #13  
Admirals Club Admiral's Club Member
 
Join Date: May 2013
Location: About here, NC
Posts: 332
Received 98 Likes on 47 Posts
Default

Like someone said before change your password and setup 2FA. Then go check your mail rules they probably setup a forward rule. Had it happen to someone in my company it took me a bit to figure out what was going on but it was there. Found no viruses with webroot or malware bytes.
Old 08-09-2020, 05:10 AM
  #14  
Senior MemberPLEDGERPLEDGERCaptains Club Member
Thread Starter
 
Join Date: Sep 2004
Location: ATL & SAV
Posts: 12,372
Received 2,007 Likes on 990 Posts
Default

Thanks for the input.
Old 08-09-2020, 05:29 AM
  #15  
Senior Member
 
Join Date: Apr 2009
Location: CT
Posts: 370
Received 640 Likes on 266 Posts
Default

Ugh. Same thing happening to wife’s email now. Going to have to solve this today, thanks for the suggestions guys.
Old 08-09-2020, 06:02 AM
  #16  
Senior MemberPLEDGERPLEDGERCaptains Club Member
Thread Starter
 
Join Date: Sep 2004
Location: ATL & SAV
Posts: 12,372
Received 2,007 Likes on 990 Posts
Default

Interesting development. I could not get into yahoo mail settings on my tablet. Our laptop gave me the access to find the forwarding instructions and there I found the hackers forwarding address. I fixed that problem. Now we need to find a new email platform that isn't Yahoo. Thanks again.
Old 08-09-2020, 06:25 AM
  #17  
Senior Member
 
Join Date: Jun 2011
Location: Marshfield
Posts: 1,590
Received 580 Likes on 258 Posts
Default

Originally Posted by Tireless View Post
Interesting development. I could not get into yahoo mail settings on my tablet. Our laptop gave me the access to find the forwarding instructions and there I found the hackers forwarding address. I fixed that problem. Now we need to find a new email platform that isn't Yahoo. Thanks again.
Gmail is the best service hands down. You can use set it up so the email address(s) are from your domain & still have the power of google spam filtering on the back end. I don't know why anyone still uses Yahoo. They have been hacked so many times it's comical.
Old 08-09-2020, 08:22 AM
  #18  
Senior Member
 
Join Date: Jul 2013
Location: N.E. Tennessee
Posts: 511
Received 479 Likes on 207 Posts
Default

IMHO... Avoid anything associated with Google as much as possible.

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Thread Tools
Search this Thread

Contact Us - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service - Do Not Sell My Personal Information -

Copyright © 2021 MH Sub I, LLC dba Internet Brands. All rights reserved. Use of this site indicates your consent to the Terms of Use.