Hi Everyone,

I usually hang out on the HWTSC board but I thought I would ask Denny S. et al about email accounts being compromised. I am speaking specifically of web based accounts like Hotmail, Yahoo Gmail. A good friend of mine had his Yahoo email account compromised just today. The "bad guys" sent emails to all the folks who were in his contact list and maybe even addys from incoming/outgoing messages? The emails were sent including a hyperlink supposedly to a work from home business opportunity. He was fortunately able to change his Yahoo password using a stronger password. I also advised him to check the DELETE folder to see if his recent deleted messages were still there ... they were. I also advised him to check his SENT folder to confirm to whom the messages were sent to. Trying to contact a real person and resolve the security issue from these email websites is next to impossible. I know from personal experience in my dealings with Hotmail over the past year. These attacks are increasing weekly ... maybe bot-nets? I am not knowledgeable enough to know.

This may sound counterintuitive, but I personally leave my web based email account always logged on ... my thinking is that the website will reject anyone trying to login to my account since I am already logged in. Does this make any sense or am I exposing myself to even more of these types of spamming attacks?

While I fully realize each website may employ and program different security procedures, I would sincerely appreciate any advice/opinions/comments from you guys who develop and maintain websites.

Thanks,

Rich
Arizona