AOL Passwords hacked from iPhone

Lawrence Finch wrote:

AOL claims they were not vulnerable to heartbleed. I don't believe them.

I can't find a single test site that reports them as vulnerable to include a couple that claim to have the ability to test sites before Heartbleed was announced.

AOL does use Akamai as a Content Distribution Network (CDN), as seemingly most every large networking company does, and they were vulnerable for a long time. I just don't know that a CDN would ever have user login credentials.

Just wondering if everyone else's "spam" has the subject line or first body line as "News"? Then a link?

And how old is you email address; what year did you create it?

These addresses may all be hosted on the same AOL server. :\ I wish AOL would take notice.

Subject "News" and body line of "Hi! News" followed by link.

My AOL account was 10+ years old.

Anyone can guess what caused it, only so that I can avoid doing whatever it was that I did in the future. I don't think I did anything, and I'm normally careful/cautious.

rexracer - that's it exactly.

I am usually careful too. I know my Adobe account was compromised in the security breach last year as well as my LinkedIn. But none of my passwords are the same or even similar.

Yes...exactly....

Hi!

News: then a link here

Then it uses my emall address as a signature........that is not my normal signature

None of these sent emails show up in my sent folder either

It is sending emails out 3 or 4 times a day

I did get thru to aol 5 or 6 days ago and they made me change my password and security question....I have since changed both 4 or 5 times and then gave up......it does nothing......deleting our accts won't stop it.....my password is currently 16 characters long....capitals, reg letters, symbols, complete gibberish so no one can guess it. Aol phone lines have been jammed up ever since and I get no response to emails or anything from them. My acct is 18 years old.....I sure wish they would fix this for us.....I don't think any of us did anything....they have to know these emails are being sent out....I am so friggin tired of apologizing to people.

Carvinginnyc wrote:

None of these sent emails show up in my sent folder either

That's a good sign, but the best hackers will take the time to delete them before they leave your account to cover the fact that it's being used.

Still, chances are good that it's not coming from your account. You should be able to figure out where it's coming from by submitting the original message with headers, not a bounce report, to Spamcop for analysis.

OK, I finally got one of these supposedly from mwk0f84049q2z68[at]aol.com and the authenticated sender is actually srnka[at]mirror-promotion.cz but even that address appears to have been forged.

You can see the SpamCop analysis here.

It is strangely reassuring to see lots of other people with the same issue. Two of my families aol accounts were hacked, and contacts copied, with 'News' spam starting on the 19th April.

Nothing in the sent box.

Changed passwords and security questions, spoke to aol etc...but that is like shutting the stable door after the horse has bolted. They said normally 3 to 4 days before they bring it under control.

Yes "News" then link.

Agreed it's reassuring.

Mine also started April 19th.

BUT don't see AOL can do anything. It has to wait for other email hosts to register these mails as Spam. Then perhpas the spammers move on?

It's even possible that your account was never hacked.

Suppose the account of someone you know was hacked, and their contact list was acquired. The hackers could then use every address in that list as both a FROM address and a target address for their spam. As I assume this is someone you know it's likely that there's a lot of overlap between your contacts and theirs.

So it might appear that you were hacked when you were not.

I have same 'News' spam originating from my email today 03.15 (UK time).

And the email appears in the 'Sent' box on just one of my three email devices.

That is my iphone. And it is only sent to people I have sent emails to from that phone.

I have changed password on email but to me it appears it might be linked to my iphone.

Any thoughts?

Is your phone jailbroken?

http://thehackernews.com/2014/04/iphone-ios-Malware-targeting-apple-account.html

I've the same issue with an IMac and a macbook.....100 miles apart. There is nothing in either sent box, but lots of undeliverable messages.

Looks to me that AOL has been breached strategically, and lots of people have lost their contact lists simultaneously. The AOL customer service and aoilmail twitter pages are a little 'busy' with this issue.

Happened to me too. AOL has proven to be a disaster in handing this. I was on hold for close to an hour yesterday and all they told me was that their tech team is working on it. They've received calls about nothing except the hacking and spoofing going on.