Helping people with computers... one answer at a time.

If your contacts suddenly report getting email from you that's not from you, you need to act quickly; you may have lost access to your account.

My contact lists has been compromised and tons of emails have been sent in my name. How do I fix it?

This is sadly very common of late.

Hackers are gaining access to real email accounts and then simply using those email accounts to send spam. They may not even bother to change the password, but they may change a few other things to make it easier for them to hack back in.

Here's a quick list of things I would do.

You Don't Have Access To Your Account

If you can't login yourself your options are severely limited. Your account has been hacked into, and the hacker has locked you out.

"When this happens people frequently assume that they have a virus. This is typically not the case."
  • Password Recovery - use the "I forgot my password" link on your account's login page to see if they'll send you a password reset or other means of regaining access to your account. There's a good chance hackers will have changed all the information that you would use to prove you are the rightful owner meaning it's likely that this will not work, but it's worth a try.

  • Customer Support - contact the customer support department for the email service that you're using. That may be phone support, but more often than not for free accounts (where I see this happening most often) there is no formal email or phone based support. Typically there are just FAQs and occasionally a peer-to-peer support forum where users can help each other. Unfortunately, this type of problem requires help directly from the service.

If you're able to regain access to your account immediately proceed to the "You Do Have Access..." steps below.

You Can't Regain Access To Your Account

Unfortunately, I believe this to be the most common scenario, particularly with the larger free email services. As I mentioned above hackers will frequently change all the account recovery information associated with your account and you'll have no way to get it back.

  • Create A New Account - you may already have done this, but you're going to need a new email account. It's up to you whether you want it to be on the same email service or not. This will be your new email account.

  • Tell Your Contacts - email all your contacts that your email address has been changed, and that the old one was compromised and is not you. If you lost your contact list as part of all this, do the best you can - if you can't recover the account you can't get the contact list.

  • Move On - there's little more than can be done. Move on with your life, there's not much point in spending a lot more effort and energy on this, other than to learn from it so that it doesn't happen again.

You Have Access To Your Account

If you have or regain access to your account there are several things you need to do immediately:

  • Change Your Password - make it a good one. You know the drill: unique, hard to guess and (probably) hard to remember, don't use real words, do use a mix of upper and lower case, numbers and if allowed a symbol or two.

  • Change Your Account Recovery Information - I can't over-emphasize how important this is. Change the answers to your secret questions; choose or make up new questions if you can. Confirm that the alternate email addresses associated with your account, as well as any phone numbers, are correct and yours. Remove any billing information like credit cards from the account. Any and all of this could be used by a hacker to regain access to your account almost immediately.

  • Check For Forwards - if the email service provides the ability to automatically forward your email to another address, make sure the hacker didn't set one up. This is another way they could quickly regain access to your account.

  • Check the Signature - if the email service provides the ability to automatically add a signature to your email, make sure the hacker didn't set one up turning every email you send into an ad for something.

  • Back Up - most people miss their contact list the most, so back it up right away. Download it (often there's an "export" function that'll do) to at least have a copy of it on your own computer. Then look at ways to backup the email you have stored in your account; quite often the most effective approach is do access the account with a desktop email program and download all the mail using POP3.

It's important to note two things: first you must be thorough in checking all the information associated with your account so as not to leave a door open for the hacker to regain access, and second be aware that the hacker may regain access to your account anyway. They did it once, and we don't know how, so we don't know that they won't do it again. This makes backing up your information while you have access all that more important.

It's Typically NOT a Virus, But ...

When this happens people frequently assume that they have a virus. This is typically not the case. Most account hacks happen by other means.

imagePurchase this article in instantly downloadable PDF form for only 99 cents! Learn more...

However...

Take this opportunity to double check that your anti-malware tools are up to date, running, and are updating their database of malware daily.

Article C4690 - December 26, 2010 « »

Share this article with your friends:

Share this article on Facebook Tweet this article Email a link to this article
Leo Leo A. Notenboom has been playing with computers since he was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed. After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers to common computer and technical questions. More about Leo.

Not what you needed?

5 Comments
SURRYROGER
December 28, 2010 9:30 AM

There is another possibility to having your address spammed, me thinks. Sending out multiple Emails without using BCC would associate your Email address with all those you mailed. I have stripped addresses from those before (for good cause) but the black-hearted could do likewise. Although I've not the technical savy to do so, it seems a short leap, to make the from address 'appear' as yours. (I'd be curious if Leo concurs?)

I use Leo's article on BCC to show my friends the wisdom of using BCC, it's good reading!
http://ask-leo.com/how_does_using_bcc_help_reduce_spam.html

Earle
December 28, 2010 10:26 PM

got sent this tip some time ago, works for me, simply add this contact to your mail list AAAAAA@AAA.AAA if a hacker tries to send using your account, the spam will start at the top of your list, as soon as it hits this one, it will bounce back and stop it continueing, if the send comes from a virus within your system, same thing happens, but you will get a message from postmaster saying the email could not be sent, which will let you know to run a deep scan of all drives of your pc. hope this works and is helpful


Cindy
December 29, 2010 11:47 AM

I had read about this AAAAAA@AAA.AAA solution before and then later read in a reputable newsletter that this does not work. So which is right?

The AAAAAAA@AAA.AAA solution does not work. Read this article: Will adding a bogus entry to my address book stop viruses from emailing?
Leo
30-Dec-2010

Pris Toth
January 3, 2011 11:21 AM

AOL told me also to make sure I have not listed MY e-mail address in my Contact List, to help avoid hackers in the future. Is this applicable to your article, in your opinion, Leo?

Offhand I can't see what value that would add. I'm not sure why the recommend that at all.
Leo
04-Jan-2011

Chris
September 30, 2011 10:04 AM

My wife's old hotmail account has been hacked and spam is being sent from her account. She cancelled the account two days ago but people are still receiving spam. What do we do?

It's very possible there's nothing you can do, but before giving up if you still have access to the account you should immediately change the password and anything that could possibly be used by a hacker to perform a password recovery - like secret questions, alternate email addresses and the like.
Leo
30-Sep-2011

Comments on this entry are closed.

If you have a question, start by using the search box up at the top of the page - there's a very good chance that your question has already been answered on Ask Leo!.

If you don't find your answer, head out to http://askleo.com/ask to ask your question.