• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Someone hacked my AIM?

VirtualLarry

VirtualLarry

No Lifer
I was sitting at my computer earlier tonight, and I got an IM from "AOL System Msg", telling me that I was suddenly logged in from two locations.

I thought that was pretty odd, as the only computer that I own that has AIM installed is the one that I was sitting at.

So I figure someone must have hacked my password, which in hindsight wouldn't have been horribly difficult. But my username is only known to a select few people, and it doesn't show up on Google at all.

I immediately went to change my password, which was temporarily thwarted by the fact that AOL requires you to use/have a "secret question" before you can access you account info. So I had to choose one. (Btw, I really dislike "secret questions". Often, the selection of questions is not so secret, such that if you answered honestly, then those questions become yet another weak link in the security chain. I believe that they weaken, not strengthen, security.)

So I made a secret question, and then I was able to change my password. It failed the first few times, apparently I made a typo or something, I almost had a heart attack because I thought that the hacker had changed my password on me already. But finally, the password change went through.

So, does anyone know how this sort of thing happens? Are there people out of the blue that can guess both usernames AND passwords? Or should I sweep my machine for a keylogger?
 
If aim loses connection then reconnects quickly, it will show you logged in twice at the same time. Be sure to look at any log files to see if it lost connection at any point you think you were online. it can lose connection and reconnect quick enough that ou wont notice.

Naturally of course a good scan and additionally, an online scanner afterwords is advised.

If you google this issue, you will find countless threads and information on this subject. I recall having this occur many, many years ago as well.

If you are concerned about an IM you received from AOL System Msg stating that your Screen Name has signed on at multiple locations, read about this feature here. This message is intentional in situations such as the following: ? The same Screen Name signs on to both AOL and AIM at the same time. ? The same Screen Name signs on to AIM in multiple locations (8 simultaneous logins are allowed). ? Your Internet provider temporarily disconnects you and assigns you a new IP address. When you receive this message, you can force your Screen Name to be logged off AIM at the other locations. You cannot cause AOL sessions to be logged off. For instructions, send any message as a reply to AOL System Msg. If you are concerned that another user may be using your Screen Name, change your password and make sure not to leave your password stored on public computers. AOL users can also change the password they use on AIM at keyword: AIMPASSWORD.
Click to expand...

http://www.aim.com/help_faq/co...problems.adp?aolp=#all
 
I read someones secret question technique was to use something inappropriate, but memorable for the answer. For example Mother's maiden name? answer, Logitech. I haven't done this yet, but it's a good idea.
 
Yeah, it happened again. My password is the same as the new password I set last time, so someone hasn't hijacked it, apparently. The double-login happened at 8:20am, and it's 10:20am now.

So maybe it's because my IP address is changing?
 
Originally posted by: VirtualLarry
Yeah, it happened again. My password is the same as the new password I set last time, so someone hasn't hijacked it, apparently. The double-login happened at 8:20am, and it's 10:20am now.

So maybe it's because my IP address is changing?
Click to expand...

That is possible but unlikely as IPs on a dynamic system don't change nearly that often.

It is also highly unlikely that some hacker would care enough (No offense) to hijack a random persons AIM account. There has to be cause for someone to go through that length of trouble. Not to mention, unless I am mistaken, AIM uses SSL or TLS to transmit authentication information.

Do you have any of it sent to a mobile phone? Does Google Chat automatically sign in?

-Kevin
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top