My email account and facebook accounts have been compromised, how can I know if I have malware of a keylogger?
Currently Being ModeratedRe: My email account and facebook accounts have been compromised, how can I know if I have malware of a keylogger?Nov 29, 2012 12:14 PM (in response to fire adept)
Whatever is going on, it's extremely unlikely to be malware of any kind. See my Mac Malware Guide.
As to what is going on, it's hard to say, but if someone is targeting you specifically, it's not that hard for an experienced person to do. It may not even require actual hacking... see the story of Matt Honan's hacking:
In short, his attacker managed to get access to Mr. Honan's Amazon account, which gave him access to the last 4 digits of Mr. Honan's credit card that was on file. That credit card was also on file with Apple, and those 4 digits were used to give him access to Mr. Honan's Apple ID. And from there all went to h***. No hacking required, just talking to folks on the phone and convincing them to do what the hacker wanted.
In addition, note that some kinds of accounts provide you with a way to give access to another person. For example, GMail provides a way to add someone else's account, giving them access to your e-mail. Hackers have been known to use such features to leave themselves hidden back doors, so they can keep getting in after you have changed the password. I don't know whether AIM or Yahoo have such features, but it's possible.
Finally, note that there are always possible issues with weaknesses in the servers. For example, right now, someone's selling an exploit kit for Yahoo mail. I don't know whether the vulnerability it relies on has been patched or not, but if it hasn't been, your attacker may be using that method to get access.
In any case, you need to address these issues with AIM, Yahoo and Facebook.