AIM hacked. - Page 24

CrushinFelt · #**231** 09-25-2007, 02:20 PM

this cannot be a hard "paper" trail to follow... IP addresses, cashout addresses/bank accounts, etc.

jcg2005 · #**232** 09-25-2007, 05:52 PM

Mkind it sounds like he is fishing for the answers to the most common security questions used by sites like AIM. Stop answering this guys questions. Yellowsub said in another post this is a potential way of him gaining access to ur acct (answering the security question and requesting a new PW)

mkind0516 · #**233** 09-25-2007, 06:47 PM

The thing is he already knew all the answers to those questions; I never told him.

jcg2005 · #**234** 09-25-2007, 07:35 PM

[ QUOTE ]
The thing is he already knew all the answers to those questions; I never told him.

[/ QUOTE ]

Just going by this...

[ QUOTE ]
SAMH1133 (6:04:19 PM): DO YOU HAVE A DOG NAMED BELL
me (6:04:42 PM): yes
SAMH1133 (6:04:30 PM): OH MY GOD
SAMH1133 (6:04:43 PM): DIDNT YOU USE TO HAVE ANOTHER DOG OR CAT
SAMH1133 (6:04:44 PM): BUT IT DIED
me (6:05:09 PM): ...yes
SAMH1133 (6:04:58 PM): WHAT WAS ITS NAME!
me (6:05:19 PM): bo
SAMH1133 (6:05:11 PM): I THINK WE ARE COUSINS MAN
me (6:06:01 PM): ok
SAMH1133 (6:05:50 PM): IS BO AND BELL ALL YOU HAD
me (6:06:18 PM): y
SAMH1133 (6:06:09 PM): I REMEMBER BELL
SAMH1133 (6:07:56 PM): JASON.
SAMH1133 (6:08:02 PM): IS HOPE YOUR MOTHER
me (6:08:49 PM): wtf
me (6:08:56 PM): why r u askin g me all these questions

[/ QUOTE ]

One of the security questions is like what is your first pets name. It seems like once he got these answers he says some random [censored] like " OMG WE IS CUZZINS" to take ur mind of why is he asking u random ?s...idno... Just can't be too careful, GL.

Boredom · #**235** 09-25-2007, 10:58 PM

Pay $15 for Steve Coleman's address and telephone number (that is, for the only listed 24-year-old "Steve Coleman" from Charleston, West Virginia), here:

http://www.usa-people-search.com/order.a...hpID=1113883167

schummlalala · #**236** 09-26-2007, 04:51 AM

Important:

http://www.coresecurity.com/index.ph...em&id=1924

TJC · #**237** 09-26-2007, 03:01 PM

Possible ways the intruder is compromising accounts is by using a vulnerability described in the article posted by schummlalala. What happens is the hacker embeds code to make the AIM program look like it has been disconnected and then prompts for you to reenter the username and password. These are sent back to the hacker. The second is to use ActiveX to initiate basically any program they want on the remote computer.

To prevent this: upgrade your AIM clients to the newest beta version.

Also it is very important to limit access to ActiveX, you can do this by clicking on Tools in (IE) and then on security. Set the all zones as high as you can get away with, and then use the custom button to prevent unsigned ActiveX scripts from being executed.

TJC · #**238** 09-26-2007, 03:03 PM

If anyone has security related questions they can pm me. I am an Information Security Engineer. I would even trade training for teh pokah lessons! [img]/images/graemlins/smile.gif[/img]

TomHimself · #**239** 09-26-2007, 03:07 PM

use pidgin

xd40 · #**240** 09-26-2007, 07:25 PM

i use pidgin