Page 1 of 1

Posted: Tue Dec 12, 2006 10:31 am
by BlindG
Posted by Joris Evers
December 11, 2006 5:01 PM PST

After visiting a cybercafe, a Hotmail user returned to find the Web mail account empty except for a note demanding payment for the return of the messages and address book, a security firm said Monday. The affected person had accessed the Hotmail e-mail account from an unspecified Internet cafe in Mexico, said Dan Hubbard, senior director of Websense Security Labs in San Diego.

"When the user came back and logged into Hotmail, all 'sent' and 'received' e-mails were deleted, along with all the online contacts," Hubbard said. The only message that remained was one from the attacker, requesting payment in order to get the data back, he said. The ransom note was written poorly in Spanish, but translated into English, it stated: "If you want to know where your contacts and your e-mails are then pay us or if you prefer to lose everything then don't write soon!" according to a Websense alert.

Such hostage taking is a new form of cyberextortion. Previous attacks have used malicious software known as ransomware that encrypts certain files on victims' computers and then demands payment for decryption. The blackmailer threatens to delete the files if no payment is received. "We have only had one report. This very first one that we have found out about," Hubbard said. The Hotmail user's credentials could also have been compromised through a phishing scam. However, Hubbard said that the unidentified victim believes that's not what happened.

Microsoft did not immediately respond to requests seeking comment.

Lesson for the wise: be cautious when traveling and using cybercafes. They appear to be targeted more and more, Websense said. Also, change your password frequently.

Source: news.com

Related article: news.com (first report of cyberextortion)

Posted: Tue Dec 12, 2006 12:45 pm
by AYHJA
Damn, this is the first that I've heard of this...Who still uses hotmail anyway..? LoL...

Posted: Wed Dec 13, 2006 8:55 am
by BlindG
I'd consider hotmail just a reference.
Basically, in a net cafe, there might be all sorts of malware.

I mean, in the same "phising" or even "keylogging" manner, who tells you that one can't steal your gmail account?

Or your gmx? OR EVEN YOUR AYHJA.COM /tongue.gif" style="vertical-align:middle" emoid=":P" border="0" alt="tongue.gif" />

Bottom line is that you have to be careful.
Services with POP3 which enable you to download and store all emails are good, just so you can avoid this kind of trouble.

Posted: Fri Dec 15, 2006 3:14 am
by bd55
I wouldn't have anything important in a webmail. Webmail is for just casual stuff and spam accounts.