theDocumentId => 1136440 Users Whose Accounts Get Hacked Find Out From Their ...

Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


03:02 PM
Connect Directly

Users Whose Accounts Get Hacked Find Out From Their Friends

New survey finds that 62 percent of users don't know how their Gmail, Yahoo, Hotmail, and Facebook accounts were hacked

Less than one-third of users said they noticed when their accounts had been compromised, and more than half found out when their friends alerted them, according to a new report.

Commtouch's new "The State of Hacked Accounts" report found that 62 percent of users didn't know how their Gmail, Yahoo, Hotmail, and Facebook accounts were hacked, and 15 percent thought they had their credentials stolen while using risky unsecured WiFi and public Internet terminals.

And these attacks are mostly about sending spam email and spreading other scams. "Commtouch's poll reveals that more than two-thirds of all compromised accounts are used to send spam and scams,” said Amir Lev, chief technology officer for Commtouch. "This is not surprising, as cybercriminals can improve their email delivery rates by sending from trusted domains, such as Gmail, Yahoo, and Hotmail, and enhance their open and click-through rates by sending from familiar senders."

Yahoo email accounts were targeted the most in attacks, with 27 percent of the compromises, followed by Facebook, with 23 percent; Gmail, with 19 percent, and Windows Live, with 15 percent.

One in eight hijacked accounts were used for a phony distress email scam that asks friends to wire funds to a foreign country, and more than half of the accounts were used to send spam. Among the 34 percent of users who knew how their accounts were hit, 15 percent said it was due to a link in Facebook, a WiFi connection (15 percent), or clicked-on email-borne malware (15 percent).

While 54 percent said their friends alerted them to the hack, 31 percent figured it out themselves, and 15 percent were notified by their service providers.

Meanwhile, Commtouch's latest quarterly threat report shows that more than 230 billion emails were sent with malicious attachments in August and September, with SpyEye, Zeus, Sasfis, and fake antivirus among the most popular malware in them. That's the most malicious email traffic recorded in more than two years, according to the report.

The country with most bot-infected machines? India, with 18 percent of the world's bots.

A copy of Commtouch's report on stolen accounts is available here for download, and its quarterly threat report, here.

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Kelly Jackson Higgins is the Executive Editor of Dark Reading. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-07-23
All versions of package gitlogplus are vulnerable to Command Injection via the main functionality, as options attributes are appended to the command to be executed without sanitization.
PUBLISHED: 2021-07-23
A stored cross site scripting (XSS) vulnerability in the /sys/attachment/uploaderServlet component of Landray EKP V12.0.9.R.20160325 allows attackers to execute arbitrary web scripts or HTML via a crafted SVG, SHTML, or MHT file.
PUBLISHED: 2021-07-23
Arbitrary file upload vulnerability in Victor CMS v 1.0 allows attackers to execute arbitrary code via the file upload to \CMSsite-master\admin\includes\admin_add_post.php.
PUBLISHED: 2021-07-23
Cross-site scripting (XSS) vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote attackers to inject arbitrary web script or HTM via the subject field to feedback_process.php.
PUBLISHED: 2021-07-23
Arbitrary file upload vulnerability in SourceCodester Responsive Ordering System v 1.0 allows attackers to execute arbitrary code via the file upload to Product_model.php.