by Jodi Ito
ITS has been seeing an increase in the number of compromised UH Usernames. These compromised accounts are being used to send spam and phishing emails out to the Internet. When we (ITS) detect an account has been compromised, we will disable the account and the account owner will need to contact us for assistance.
WARNING! These spammers have been starting to delete emails (both in the Inbox and Sent mail) from the compromised accounts (we suspect to cover their tracks). Additionally, they change settings in webmail to:
- forward all incoming email to another address
- add mail filters to send all incoming email to another address
- change the "reply-to:" address so that the recipients reply will go to another address
- change the signature to include the spam message itself.
We suspect that these accounts are hijacked when the account owners reply to phishing emails or click on the link included in the phishing email message OR if they have a weak password.
Here are some tips to prevent your account from being hijacked:
Here's an example of a strong password (you have a dog named Rover and you got him in October 2009): 10RvR09$
Paying attention to these tips will help to keep your account safe from hijackers.