[Klug-general] (no subject)
James Blake
jimmyblake at gmail.com
Mon Nov 8 13:16:05 UTC 2010
Hi George
If you have been compromised, you've almost certainly fallen victim to a social engineering attack that has either installed some malware on your machine or obtained your password by spoofing the login to a legitimate Website (phishing) - the latter is more likely.
If this has happened, you shouldn't feel bad as some of the attacks are very convincing - we have approaching a million subscribers here and our security intelligence team constantly track the emerging attacks.
The first thing to do is check the logins to your email account - log into Gmail and look at the bottom of the page there is a line that says 'Last account activity: 0 minutes ago at this IP (x.x.x.x). Details'. Click on 'Details' and make sure you recognise all of the IP addresses listed. If you go to www.whatismyip.com you'll be able to find out what your correct IP address is and, typically, your historical addresses shouldn't differ to much from your current one.
The advice on change your password immediately is a good one. As stated by Peter, in the context of the security of Web-based email, the security of the underlying operating system is largely irrelevant - although I do find that Evolution defaults to unencrypted POP3 and SMTP even though Gmail supports encryption!
Regards
James Blake PhD CISSP CISM CCSK
Group Chief Security Officer
Mimecast
On 8 Nov 2010, at 13:04, Peter Frost wrote:
> Ubuntu's security is irrelevant - you're using GMail. First step: check whether anyone's set up extra mail-forwarding on your GMail accounts (common trick) and change your GMail password.
>
> Pete
>
> On 8 Nov 2010, at 13:02, George Martinez wrote:
>
>> How can I tell if I've been compromised? I thought Linux (Ubuntu) was fairly secure; do I need to correct my thinking and if so how do I improve the security?
>> George
>>
>> On 8 November 2010 11:27, Colin McCarthy <binarysignal at gmail.com> wrote:
>> George people think you are compromised and spamming the world. Is this true?
>>
>> Colin
>>
>> On 8 November 2010 11:20, David Halliday <david.halliday at gmail.com> wrote:
>>> Spam advertising ignore it.
>>> Can someone tell George he has been compromised!
>>>
>>> On 8 November 2010 09:41, George Prowse <george.prowse at gmail.com> wrote:
>>>>
>>>> http://gialloverdeblu.it/andrew.html
>>>>
>>>> _______________________________________________
>>>> Kent mailing list
>>>> Kent at mailman.lug.org.uk
>>>> https://mailman.lug.org.uk/mailman/listinfo/kent
>>>
>>>
>>> _______________________________________________
>>> Kent mailing list
>>> Kent at mailman.lug.org.uk
>>> https://mailman.lug.org.uk/mailman/listinfo/kent
>>>
>>
>> _______________________________________________
>> Kent mailing list
>> Kent at mailman.lug.org.uk
>> https://mailman.lug.org.uk/mailman/listinfo/kent
>>
>>
>>
>> --
>> A computer is like air conditioning: it becomes useless when you open windows.
>>
>> <ATT00001..txt>
>
>
> _______________________________________________
> Kent mailing list
> Kent at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/kent
More information about the Kent
mailing list