Quote:
Originally Posted by Evans, Marv
Hi everbody. I changed my email account security code as soon as I found out. I have an alternate email account & when I change the code, they send an email to that account for me to enter a new code. This exact same scam happened to a friend of mine a month & a half ago. I'm trying to answer all the emails I'm getting asking about it. The crappy thing is it wiped out all the emails in my "sent" folder and my arriving emails now are going into a different folder than my inbox, which is now operating like my inbox. They started around 9:00 this morning, and I wasn't on any websites except PPOT and Amazon. I trust links on PPOT, but I vaguely remember opening a link I didn't think went with the subject of the thread. Maybe or maybe not. I haven't opened links from questionable sites - that I know of. I have no idea how I got zapped.
James - I think the last time I emailed you was a few years ago. Shows how thorough it was I guess.
|
Your email account got compromised, someone got access to your password. Could be from an old leak. People are creatures of habit and tend to reuse the same password over an over and rarely change them regularly. Even a decade old data leak can compromise you.
Here is what's happening.
They have set a rule in your online / web portal mail account, yes you have one, everyone does.
The rule moves all incoming mail into either spam or some folder other than your inbox.
They are monitoring that for emails from your contacts who are replying asking if what "you" just sent them is legit. They are replying yes to continue to spread their phising link.
They also typically will move all other mail back to your inbox so you are not aware anything odd is going on.
I've seen them run that on users for up to 2 weeks undetected.
You can scan your local machines all you want, the compromise is not there, it's in your web portal.