my mail has been accessed by a clever person how can i do it so no one can access it i am on a wireless network and some one is requesting forgot password and having a new one sent any ideas so no one can accsess my nail??
2006-11-26 19:07:05 · 5 answers · asked by Psycho Dave 4 in Computers & Internet ➔ Security
Yahoo changes it's policies and procedures so much it's hard to say. But what you want to do is find out what questions Yahoo asks when you request a new password, change that information, and then change your password. Next time they request that password they won't know the answers to the questions Yahoo is asking, only you will.
2006-11-26 19:11:10 · answer #1 · answered by Sandfrog 3 · 0⤊ 0⤋
Indeed add your security code so as when requesting a new password you need to add a second password. Make sure you change password address is in an account only you can access.
2006-11-26 19:22:47 · answer #2 · answered by Cynical_Si 4 · 0⤊ 0⤋
apparantly, it is someone who knows you and knows your zip code and birthdate. Yahoo will not allow you to change your question or your birthday, but you can change your zip code. Go into your account info, and edit your zip code. Make up a zip code, but dont forget it yourself. Do like I did and print the page after you change it, and hide the page for safekeeping in case you ever need it. Without the zip code, no one can reset the password.
2006-11-27 05:48:20 · answer #3 · answered by Goodluckcharmbab 1 · 0⤊ 0⤋
Its really very puzzling what you saying because obtaining new password (with "forgot password" page) requires providing: DOB, ZIP code, answer to security question and country (which you gave to Yahoo while opening account and to which not even Yahoo employee have an access). If someone is sniffing communication from your wireless network he could surly easily sniff your username and password and than change it, however why would he bother with “forgot password” form and how would he obtain necessary to access it data ? Opening of account is done over SSL connection so no sniffing could sniff those data – unless he would use “APR poisoning” and “man in the middle attack” at exact time as you were doing it - which sounds as much of coincidence and not very probable scenario to me. Logging with your name to mail and changing password would be just much easier (to do and obtain) and seems just unlikely anyone would bother with forget password page (even if he had data) since first can be done way more easily.
It is not possible to change mentioned data (necessary to use “forgot password” form) once account is created. So if he indeed really have it – you effectively lost control over account forever - open new account.
Still something tells me that’s probably not the case. He probably either have you hacked with Trojan, sniffing your from wireless network, steals password with password stealing page or just crack your password if its weak.
References and solutions:
TROJAN
Just as with any malware scan with whatever you can (including online free scanners) and pray it is not rootkit based:
http://www.microsoft.com/technet/sysinternals/Utilities/RootkitRevealer.mspx
http://www.f-secure.com/blacklight/
http://www.emsisoft.com/en/software/ax/
http://usa.kaspersky.com/services/free-virus-scanner.php
http://www.pandasoftware.com/products/activescan
http://www.trendmicro.com/spyware-scan/
http://security.symantec.com/sscv6/default.asp?productid=symhome&langid=ie&venid=sym
SNIFFING:
Turn on WPA encryption in router (don’t use WEP encryption or MAC filtering which are badly broken and trivial to break for 10 year old next door) on router with EXTREMALY long strong key. If your router doesn’t support WPA - use this free and extremally easy to use (zero configuration) VPN client:
http://www.iopus.com/ipig/
Watch for pages which display warnings about expired or invalid certificate (sign of “man in the middle attack”). Subject and remedies covered in depth by Steven Gibson (creator of Adware) on following page - auditions: # 10-19
http://www.grc.com/SecurityNow.htm
PASSWORD STEALING PAGES:
http://www.zakie.fsnet.co.uk/ChatRoomsStuff/Help/passwordstealingfalseyahoowebpage.htm
http://security.yahoo.com/password_scams.html#website
http://www.carbonize.co.uk/Yahoo/hacking.php
http://www.helpbytes.co.uk/fake_login.php
CRACKED PASSWORD:
Make strong password! Password which is composed of 20 or more characters, all allowed by Yahoo variables (upper and lower case letters, symbols and numbers) and words which cannot be found in dictionary is impossible to break in the lifetime of universe. To see why read post of Robert_K from this page starting reading from “It is possible to crack Password…”:
http://www.yahelite.org/forum/index.php?topic=1762.0
2006-11-26 20:00:08 · answer #4 · answered by Lisa M 5 · 0⤊ 0⤋
Change or add your security code
2006-11-26 19:16:06 · answer #5 · answered by Andrew George 2 · 0⤊ 0⤋