I've been HACKED

**KBs PensNmore** · 28th May 2022, 04:30 PM

Hi All, just to let everyone know, my Email address book got hacked!!!
Some SCUM hacked into my yahoo.com account and has sent out a request to purchase some card and that I will pay you back, or something along those lines.
How I got this was, that an extremely official looking email arrived from Yahoo, stating that I needed to log on to update my email address, well by the time I found out IT was tooo late.

So, please accept my sincerest apologies to everyone that was on my email address listing, for this inconvenience.
Kryn

**Michael G** · 28th May 2022, 06:35 PM

The messages have already started Kryn. Is the account going to be blocked or do we need to treat messages that say they are from you as junk until further notice?

Michael

**OxxAndBert** · 28th May 2022, 06:47 PM

What a PITA for you Kryn.

In case you’re not aware, the buggers will now be trying every website etc that they could find a reference to in your email.
If you happen to have used the same password on those sites as your yahoo account they will be into those other websites too.

Steve

**Commander_Keen** · 28th May 2022, 07:05 PM

Here's an open source password manager option:

1) Download KeePass
2) Remember ONE 12+ character long password to access your database
3) Auto generate passwords with longchain (20 characters), unique to each website / user. These would be virtually uncrackable using brute force.
4) Copy/paste or auto-fill to websites.

But even better is to know of scam / hack techniques, be aware of how they work, and Don't open sus links.

I guess we're lucky with this website though, as if you type in your password, it auto-changes it to asterixes. Look: ************

**droog** · 28th May 2022, 07:53 PM

Assume anything linked to that account is now at risk.
If you have any important online portals that use that email get a new address and swap them over so they are unable to request a password reset.

**KBs PensNmore** · 28th May 2022, 09:49 PM

I've changed my email address to my full. name at yahoo.com and a different password, so hoping that will suffice.
I've managed to get the contact addresses to the new address.
Should anyone want my new email, please PM me.
Thanks
Kryn

**Salv** · 29th May 2022, 11:29 AM

There are no new emails from Kryn in my Inbox since the warning. Has anyone else who's email address is on Kryn's list of addressees NOT received a suspect email ?

Salv

**Commander_Keen** · 29th May 2022, 11:36 AM

*facepalm*
Not knowing who is on his email contacts list makes this a pretty large number of possible responses in the negative...

Just don't open or follow links in suspect emails.
And if you are directed to do ANYTHING related to updating passwords etc, do this via their site directly (look for the padlock SSL security), not via am email link that can redirect to a spoofed copy of an authentic webpage that only serves to farm your credentials.

**KBs PensNmore** · 29th May 2022, 03:45 PM

Please treat anything from krynb as spam. I have changed my email address.
Thanks
Kryn

**wm460** · 29th May 2022, 04:37 PM

Originally Posted by Commander_Keen

Here's an open source password manager option:

1) Download KeePass
2) Remember ONE 12+ character long password to access your database
3) Auto generate passwords with longchain (20 characters), unique to each website / user. These would be virtually uncrackable using brute force.
4) Copy/paste or auto-fill to websites.

But even better is to know of scam / hack techniques, be aware of how they work, and Don't open sus links.

I guess we're lucky with this website though, as if you type in your password, it auto-changes it to asterixes. Look: ************

How does this work if you have a couple of phones and couple computer etc?
Can you still just use the one 12 letter password?

Sent from my iPhone using Tapatalk

**Commander_Keen** · 29th May 2022, 07:29 PM

I'm unsure if Keepass is available on mobile- I primarily use it on PC.
I do store my database in the cloud, which the locally installed program accesses to decrypt my database. So this means that any HDD failure, or computer crash will not wipe out my password cache.

**Grahame Collins** · 29th May 2022, 07:32 PM

Hi Kryn,
Sorry to hear that.
Though thanks for letting the board know.
No odd posts with your name at this end.
cheers
Grahame

**Salv** · 29th May 2022, 07:36 PM

Originally Posted by Commander_Keen

*facepalm*
Not knowing who is on his email contacts list makes this a pretty large number of possible responses in the negative...

No, there was never an intent to seek an exhaustive list of responses, just anyone would have sufficed. I happen to be curious whether the hackers have launched a 'carpet bombing' exercise or possibly saving contact data for later use.

Deleting suspect emails and text messages and/or hanging up on scamming telephone calls has become almost a daily exercise. Just a sign of the times.

Salv

**racingtadpole** · 30th May 2022, 06:43 PM

Technically, you were phished, not hacked..
Still a PITA regardless

**KBs PensNmore** · 30th May 2022, 07:28 PM

Originally Posted by racingtadpole

Technically, you were phished, not hacked..
Still a PITA regardless

Regardless I'm still Pi**ed about it. I'm computer illegitimate, so I don't know the technical terminology.
Kryn

Thread: I've been HACKED

Thread Tools

Search Thread

I've been HACKED

I've been HACKED

Posting Permissions