-
After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.
Gmail hacked - Evo is number one suspect
- Thread starter bbenny
- Start date
-
- Tags
- htc evo 4g
IAmSixNine
Well-Known Member
Makes me wonder if it was actualy from your device or if it was from another machine and the timing was just close to when your EVO was set up.
I am sure they needed to log in and then create the email to spam your contacts.
I am not an expert on spamming but my guess is not directly related. However i have heard, or at least i thought i read somewhere where this has happened as well.
I am sure they needed to log in and then create the email to spam your contacts.
I am not an expert on spamming but my guess is not directly related. However i have heard, or at least i thought i read somewhere where this has happened as well.
I don't think it was a coincidence.
Addie/password probably grabbed during a pass through server.
A bot can log on and spam in seconds....
This was the first time I accessed my Yahoo account on a mobile device using an app.
A quick google found it is not unusual now
hood101010
Newbie
My girlfriend received her replacement (crappy Ausurion refurb by the way, screen isnt even close flush, random rebooting already....) EVO Tue.Activated and set it up Tue night. Stock apps updated. 2.3 updated. No Market apps installed. Did not use browser. did use Facebook app. Hotmail account hacked and spamming by Friday morning. Less than 72 hours.
BiohazardVideo
Member
Happened to me on my Ascend, Any phone or computer falls for that bug... I on the other hand sent them a remote virus that I'm sure did a number to their system... I love being a hacker...
Change your passwords monthly, adding caps and numbers is the best way.
Change your passwords monthly, adding caps and numbers is the best way.
ceabbott2
Well-Known Member
Macs, like Linux, can in theory get viruses - it's just much harder to do given the unix underpinnings - especially process management - of those operating systems.
For a short while, Apple distributed the best 3rd party anti-virus program it could find, free, to all .Mac (now called MobileMe) users.
Like any anti-virus program, it tried to become an executive monitor - and in its attempt to override the normal system mechanisms, it quickly became virus-like in the widespread instabilities it caused. It was pulled down, we all dropped it and haven't looked back.
Much as the Windows community and virus/anti-virus industries like to proclaim that it's the small numbers non-win machines that have allowed them to escape the wrath of hackers, the plain and simple truth is that every jerk would love to be the one to proclaim to his haxoz buddies that he cracked OS X.
The other plain and simple truth is that unix systems are simply much, much tougher to infect.
The whole by-the-numbers argument applied to the classic OS (bye bye almost a decade ago), so guys, get with the program.
The best thing that Redmond could ever do would be to do what Apple did - admit that the whole infrastructure is just freaking wrong, gut it completely, and replace it with unix.
The roots of the Darwin/unix underpinning OS X is a combination of:
There are security exploits to be found for OS X - plenty of them. You have to actually know what you're doing and how a system works to get to them - something lacking in the skill set of most virus writers - and users typically have to be using their system in some wide-open fashion to suffer from them.
- modified Mach microkernel
- OpenBSD - the security standard in the industry
- NetBSD - the part of BSD upon which the internet was founded
- FreeBSD - the part of BSD that formed the basis for interoperability
Macs aren't protected by a virus force field - they're simply naturally immune. Windows machines, on the other hand, are naturally weak and the whole meme that Macs will somehow fall prey should their numbers ever get large enough is part of the Redmond reality distortion field (and yes, both sides have them).
As for it being a disaster waiting to happen - yeah, fine, whatever you guys want to believe.
While MS has taken over the server market for the web (just a short time back, that was all unix), I'd wager the best and most important sites are not invested in that technology.
By the time that OS X is overtaken with viruses, so too will large parts of the internet that you care most about - that will be the disaster.
Opinions do not equal facts and neither can facts be out-voted.
Given the vitriolic anti-Mac people in this forum, I'll just say in advance: flame away, I'll only answer intelligent remarks on the subject, not invective. I simply don't have time for it.
But before you reply - make sure your anti-virus stuff is up to date, mmmk?
Because the virus authors will always love to pick the low-hanging fruit.
PS - Throwing rocks at OS X is like throwing rocks at Linux - it's not even wrong.
EarlyMon I don't understand 79% of what you said but....WOW!
ceabbott2
Well-Known Member
XikkeN
Member
After reading this thread, I have some thoughts:
1) All you people who lost control of your email and happened to have an EVO at the same time; I challenge you to prove that your EVO was responsible for it. I challenge you to provide concrete proof that your phone was responsible.
2) From my experience, there has never (NOT ONCE) been a time where someone I know squealed "I've been hacked," and it was true. As if some person targeted them specifically for no reason. (In many cases just to spam their contact list...? Cracker please. Let's be realistic...) People with the talent to break into Gmail are not going to spend their time stealing email accounts from college students. They are going to be working for someone like the government or doing something that PAYS OFF.
These careless individuals who lost their emails were caught in a phishing scheme or Firesheep'd or any number of other things. (Registering for a website with their email password and account matching their new account for whatever)
In every situation, it was their own fault. They were careless and stupid. The same seems to hold true for this thread. There is so much arbitrarily invented information concerning viruses and "hacking" that it's ridiculous. EVO's aren't distributing passwords to third parties. It's the users themselves.
1) All you people who lost control of your email and happened to have an EVO at the same time; I challenge you to prove that your EVO was responsible for it. I challenge you to provide concrete proof that your phone was responsible.
2) From my experience, there has never (NOT ONCE) been a time where someone I know squealed "I've been hacked," and it was true. As if some person targeted them specifically for no reason. (In many cases just to spam their contact list...? Cracker please. Let's be realistic...) People with the talent to break into Gmail are not going to spend their time stealing email accounts from college students. They are going to be working for someone like the government or doing something that PAYS OFF.
These careless individuals who lost their emails were caught in a phishing scheme or Firesheep'd or any number of other things. (Registering for a website with their email password and account matching their new account for whatever)
In every situation, it was their own fault. They were careless and stupid. The same seems to hold true for this thread. There is so much arbitrarily invented information concerning viruses and "hacking" that it's ridiculous. EVO's aren't distributing passwords to third parties. It's the users themselves.
awilson77584
Newbie
I recently started using the google two factor authentication service. It is not an inconvenience, because I always have my phone with me. I also rarely use the gmail web interface. I get my mail on my phone or in my desktop mail application using imap. Lastly (sorry, I have to say it) I use a mac. They are a little less susceptible to the drive by browser infection issues. If I use my Win 7 VM for a while, my system is clobbered by popups wanting to scan my machine for free ... //smile Seriously though, since you use gmail, the two factor auth is a handy resource.
ironman187
Well-Known Member
Ok, so did you set your Gmail to HTTPS? If not, I bet you your Evo, that it was just another routine Gmail hack. It's actually not very secure unless you set the security measures. I never used mine anywhere but my home network, and it got hacked, I changed it to HTTPS and havn't had an issue since. BTW, I'mma PM you my address so you can send me the phone
As for the MAC hate, other than Apple products being stupidly expensive, the OS is very secure BECAUSE there isn't a large number of mac os users out there, and also the permissions rules needed to install software. However, the best OS is Linux, not only for the reasons mentioned above, but because most builds come with antivirus programs that are not resource hogs.
As for the MAC hate, other than Apple products being stupidly expensive, the OS is very secure BECAUSE there isn't a large number of mac os users out there, and also the permissions rules needed to install software. However, the best OS is Linux, not only for the reasons mentioned above, but because most builds come with antivirus programs that are not resource hogs.
9to5cynic
Android Expert
^ I don't think any of my linux distros have AV installed by default...
Let's face it, linux AV would only scan for windows viruses anyway.
Security is pretty easy with no scrip and not running in privileged modes. Don't use scripts/batch files/exes that you aren't 100% sure about.
(Plus, noscript is blocking nearly all of my ads...)
-- and i'd buy a mac if it wasn't so much more expensive... alas, I need some cash. And I hope that guy sends you his phone. Then when you spam his email, it could have been 'hacked' again.
Let's face it, linux AV would only scan for windows viruses anyway.
Security is pretty easy with no scrip and not running in privileged modes. Don't use scripts/batch files/exes that you aren't 100% sure about.
(Plus, noscript is blocking nearly all of my ads...)
-- and i'd buy a mac if it wasn't so much more expensive... alas, I need some cash. And I hope that guy sends you his phone. Then when you spam his email, it could have been 'hacked' again.
ironman187
Well-Known Member
Ubuntu comes with one pre-installed, and no, it is not for Windows viruses. There have been several viruses specifically targeting security flaws in Linux, (those security flaws are usually fixed within hours of being discovered.) But, better safe than sorry.
9to5cynic
Android Expert
You're talking about clamAV? And I think that's only the CLI version thats installed, not the GUI.
Also, the ubuntu help page lists the linux viruses and worms, they are all from several years ago. The most recent one being 2007.
Most of them have (according to ubuntu) zero chance of infecting you, and were only a 'proof-of-concept' anyway. And you can only get the ELF viruses by giving them your password anyway.
It also mentions that clamAV should be used to scan files that you are sending to windows users (in the reality section).
https://help.ubuntu.com/community/Linuxvirus
--
Yeah I agree on the better safe than sorry. I tend to stick to the repositories
Also, the ubuntu help page lists the linux viruses and worms, they are all from several years ago. The most recent one being 2007.
Most of them have (according to ubuntu) zero chance of infecting you, and were only a 'proof-of-concept' anyway. And you can only get the ELF viruses by giving them your password anyway.
It also mentions that clamAV should be used to scan files that you are sending to windows users (in the reality section).
https://help.ubuntu.com/community/Linuxvirus
--
Yeah I agree on the better safe than sorry. I tend to stick to the repositories