Helping people with computers... one answer at a time.
If your contacts are getting email from you that you didn't send, then it's very likely that your email account has been compromised.
Hi,somebody is sending emails to my contacts using my email address to which I haven't sent. How can this be? Have I been hacked into? I do have full internet security avg 9,could you please let me know what action to take if any as I find this quite worrying! I have changed my password so far, but that is all.
•
You should be worried.
I'm not sure that I'd say you've been "hacked into", but my guess is that your email account has indeed been compromised.
I'll look at what likely happened, why this isn't like other "Someone's sending from my email address!" kind of issues, and what steps you need to take next.
•
The big clue here is that email is being sent from you to contacts in your address book.
In the "old days", that typically meant that your computer had acquired a virus, and that virus was in turn accessing your PC's email program and systematically sending email to everyone in your contact list or address book.
While that's still a possibility - and you should absolutely make sure that your anti-malware tools are running and up to date - it's not nearly as common as it once was. Most email programs now carefully protect against unauthorized address book access.
What more likely occurred is that your email account has been compromised - meaning that you probably have an on-line email account, free or otherwise, that someone has gained access too. By virtue of doing so they now have access not only to your email, but to your address book as well. It's all too common these days to hear of folks whose accounts have been compromised only to have all their friends get inundated with spam, threats, malicious emails or messages that try to impersonate you and scam your contacts out of money.
How this happened is difficult to say. It could be anything from a weak password that's easy to guess, to your account credentials being sniffed in an open WiFi hotspot, to your simply having shared the account information with someone you should not have.
For all we know, it could also be a roommate walking up to your computer when you're not using it and sending messages right then and there.
(And for the record, last year there was a partial account compromise at one of the larger free email services - account credentials were stolen without the users having done anything wrong. Same result.)
I've talked before about email that appears to come from you, but in fact does not. This is different. Specifically:
-
Spam email is sent to random people you don't know, "spoofing" the From: address to make it look like it comes from you when it does not. There is almost nothing that can be done about this.
-
Email from stolen accounts is sent to people in your address book, and is not spoofed at all - it really is coming from your account. It's just not you sending it.
Changing your password is not enough.
Not even close.
As I've discussed before, changing your password is important, but it's not nearly enough. You also need to change any and all security related information associated with the stolen account. Why? Because the thief has access to all that too, and he can use that information to steal your account again. And again. And again.
The article Is changing my password enough? details the additional steps you must take if your account has been compromised.
Article C3992 - December 30, 2009
Leo A. Notenboom has been playing with computers since he
was required to take a programming class in 1976. An 18 year career as a programmer at Microsoft soon followed.
After "retiring" in 2001, Leo started Ask Leo! in 2003 as a place for answers
to common computer and technical questions. More about Leo.
This morning I checked my inbox on hotmail and I had lots of messages stating 'delivery status failure' from postmaster@hotmail.com and 'mailer-daemon@yahoo.co.uk. Obviously I didn't send any of these and I checked my sent folder which is empty.
I'm doing a full scan on my pc using Kaspersky PURE right now to check for trojan/malware.
I've deleted all my contacts in my contact list. I remembered I saved myself in my contact list so I received one of these 'emails' and I clicked on the header and it shows an I.P address would that I.P be the culprit?
Do you think my pc has malware or is my email hacked or is a case of email spoofing.
I've got 3 hours till my full scan of my pc is finished.
Thanks for reading this.
Posted by: Dani at April 8, 2012 8:19 AM@Dani,
Unless you are downloading your Hotmail email to your computer, with a program such as Outlook, scanning your computer won't help. Hotmail is an online service and the compromise has, likely, happened online.
You need to change your password and all recovery information right away in your account, though it is possible that your email address has just been spoofed.
This recent article from one of Leo's Answercasts explains in more depth, and gives some relevant links at the bottom to help you out.
My friend says I have a virus in my hotmail email, what should I do?
Posted by: connie at April 8, 2012 9:20 AMI changed all my password and recovery info but I have ANOTHER hotmail account that has just sent over a hundred emails to strangers telling them that their world of warcraft account has been compromised. Both of my hotmail accounts have now been spoofed/hacked, should I just deactivate these accounts and go with a different email provider.
Posted by: Dani at April 9, 2012 3:37 AMThe difference with this new attack is the emails are actually present in my sent folder does this mean this new attack is a hacker in my account. ugh this is annoying, both hotmail accounts have no connection with each other.
@Dani
Posted by: Mark J at April 9, 2012 12:26 PMIf you can get into your compromised account and change password and all of the security information, it should get your account back and lock out the hackers.
Is changing my password enough?
My friend says I have a virus in my Hotmail email, what should I do?
soo annoying the same is happening to my email
Posted by: JACKIE BLESSMAN at April 25, 2012 11:21 AM