web analytics
The Standard
Advertising

Xtra email compromised?

Written By: - Date published: 12:16 pm, February 10th, 2013 - 17 comments
Categories: internet - Tags: ,

In the last 12 hours I’ve had robo-spam email from 4 different friends, all with xtra email accounts.

Is anyone else seeing this? Could be a major compromise of xtra email.

If you have an xtra account, check your “out” folder. If there are messages there (typically to about 8 recipients) that you didn’t send, then you are probably affected.

17 comments on “Xtra email compromised?”

  1. JK 1

    Yep – I received one – no subject – from Moira Coatesworth which turned out to be spam

  2. James Thrace 2

    Yep, I’ve had 2 from the same person. Both spam. Both emails included all recipients in the “to” field that this person has emailed… ever.

  3. Roflcopter 3

    It’s been happening with increasing frequency over the last week or so.

  4. Ed 4

    I’ve had two in the last 12 hours – is it worth advising people to contact Xtra?

  5. Zola 5

    I got the following sent to me.-

    Dear Xtra Subscriber, We are currently verifying our subscribers
    Profile in order to increase the Efficiency of our mail
    features.
    Due to the congestion in all Profile users and removal of all unused
    Account, Xtra Will be shutting down all unused Profile,
    To Join in the Recent Upgrade Taking Place at Xtra ,You must
    Reply to this email by Confirming your account details below,
    UserName:
    Password:
    Failure to do this will immediately render
    your email address deactivated from our database.
    Thanks for using Xtra MAIL
    We are sorry for any inconvenience.
    Regards,
    Xtra Customer Care Team.

    • DH 5.1

      Standard phishing email there Zola, that’s not from Xtra. Anyone who followed those instructions needs to change their password.

      [lprent: Good advice. Apart from using the word “Standard”. Just to be clear, we don’t send e-mails asking anyone to do anything apart from when they initially register. And that has been off since the server move in Jan because I forgot to turn the darn thing back on. I needed to get rid of the IP of the originating server, and never got time to do it. Back on in the next few days. ]

      • Janice 5.1.1

        I was going to warn the same DH. I am with xtra and have not received anything like that yet.

  6. Fortran 6

    Yes I got a real Xtra em stuff up yesterday afternoon, bouncing em’s to people in my address book to whom I have sent nothing.
    Had huge auto MS security update (23 updates) this morning.
    Probably related.
    Updated all my security programmes this morning.

  7. Nigel 7

    Yes, I have had about 8 of these emails and other family members have them too. – all xtra/yahoo accounts. started at just before 7am today. The link in each email points to a different URL each time, which is unusual.

  8. PM-Geek 8

    It was actually a Yahoo vulnerability that has been doing the rounds for a few weeks, but seems to have jumped over to Xtra (who outsource their email to Yahoo).

    For geeks: It was an XSS vulnerability in a 9 month old unpatched instance of WordPress on Yahoo’s site. Details here:
    http://threatpost.com/en_us/blogs/yahoo-mail-breach-linked-old-wordpress-vulnerability-013113

    For non-geeks: This was a vulnerability at Yahoo’s end and particularly slack. Just another reason you really shouldn’t use Yahoo or Xtra email accounts.

    Probably the same issue that was discovered and being sold last year (eg see here):
    http://threatpost.com/en_us/blogs/yahoo-mail-cross-site-scripting-attack-sale-112612

    Apparently it’s fixed now, although it’s quite likely that whoever did it kept copies of all your contacts and will keep spamming them in your name.

    • r0b 8.1

      Thanks for that…

    • David H 8.2

      Damn you mean people still use Yahoo??? But it’s not only that, it’s the whole Miccysoft (Windows (they own a chunk of Yahoo)) bundled software ie: Outlook express, or what ever they call it now.
      I use Thunderbird for a mail client, and I have a Gmail account, and I have NO problems. There again I keep well away from anything to do with Telecom. Yes I do use Windows 7 but anti virus, and previously mentioned mail programs, are NON Miccysoft.

  9. irascible 9

    Have had spam url link from at least 5 people this weekend from within NZ. Earlier had same link spammed from email accounts in ME / Asia all thRough Yahoo.

  10. karol 10

    I had one today. Alerted the person who said they’d just noticed that loads of emails had been sent from hir account.

  11. John Dalley 11

    Iv’e had several with xtra address as well as a couple with yahoo email accounts

  12. Nigel 12

    Hi all, I’m still getting the emails. All from accounts @xtra.co.nz via yahoo.com – another six so far today. I must be in a lot of address books.

  13. Nigel 13

    I meant to mention that the spamming was briefly reported on the 6 O’Clock One News yesterday (Sunday).

Important links

Recent Comments

Recent Posts

  • Dunedin Hospital needs more than drip feed
    An ongoing and embarrassing pattern of major building leaks and equipment failures at Dunedin Public Hospital has been revealed in papers released under the Official Information Act, Dunedin North MP David Clark says. “Documents released under the Official Information Act… ...
    14 hours ago
  • Dunedin Hospital needs more than drip feed
    An ongoing and embarrassing pattern of major building leaks and equipment failures at Dunedin Public Hospital has been revealed in papers released under the Official Information Act, Dunedin North MP David Clark says. “Documents released under the Official Information Act… ...
    14 hours ago
  • 17 too young for teens to be shown the door
    Laws which see young people under the care of CYFS abandoned once they turn 17 will mean at least a dozen young Kiwis will be left to fend for themselves over the December festive season, Labour’s Children’s spokesperson Jacinda  Ardern… ...
    14 hours ago
  • 17 too young for teens to be shown the door
    Laws which see young people under the care of CYFS abandoned once they turn 17 will mean at least a dozen young Kiwis will be left to fend for themselves over the December festive season, Labour’s Children’s spokesperson Jacinda  Ardern… ...
    14 hours ago
  • National’s albatross, taxpayers’ curse
    Government consideration of further corporate welfare hand-outs to SkyCity for its convention centre shows just how weak the original contract was, Labour’s Economic Development spokesperson David Clark says. “Taxpayers will be appalled to hear that on top of the humiliating… ...
    15 hours ago
  • Recognizing Palestine: The European Parliament Votes
    Last week I wrote a blog drawing attention to Sweden’s formal recognition of the state of Palestine (the second Western state to do so after Iceland).  That move has created ripples throughout the international community. In recent months the parliaments… ...
    GreensBy Kennedy Graham MP
    3 days ago
  • Recognizing Palestine: The European Parliament Votes
    Last week I wrote a blog drawing attention to Sweden’s formal recognition of the state of Palestine (the second Western state to do so after Iceland).  That move has created ripples throughout the international community. In recent months the parliaments… ...
    GreensBy Kennedy Graham MP
    3 days ago
  • Recognizing Palestine: The European Parliament Votes
    Last week I wrote a blog drawing attention to Sweden’s formal recognition of the state of Palestine (the second Western state to do so after Iceland).  That move has created ripples throughout the international community. In recent months the parliaments… ...
    GreensBy Kennedy Graham MP
    3 days ago
  • Minister has work to do over Xmas
    Red flags raised in a multi-agency review into how Phillip Smith was able to flee the country highlight the inadequacies of those very same agencies not having red flags in place that would have notified them of his plans, says… ...
    4 days ago
  • Minister has work to do over Xmas
    Red flags raised in a multi-agency review into how Phillip Smith was able to flee the country highlight the inadequacies of those very same agencies not having red flags in place that would have notified them of his plans, says… ...
    4 days ago
  • Minister has work to do over Xmas
    Red flags raised in a multi-agency review into how Phillip Smith was able to flee the country highlight the inadequacies of those very same agencies not having red flags in place that would have notified them of his plans, says… ...
    4 days ago
  • Gerry Brownlee’s revolving airport door story
    A new report shows Gerry Brownlee is the latest Cabinet Minister to have contracted the infectious tell-porkies-until-you-are-caught disease, Labour’s Chief Whip Chris Hipkins says. “A Civil Aviation Report out today shows that despite being an extremely recognisable figure, Gerry Brownlee… ...
    4 days ago
  • Gerry Brownlee’s revolving airport door story
    A new report shows Gerry Brownlee is the latest Cabinet Minister to have contracted the infectious tell-porkies-until-you-are-caught disease, Labour’s Chief Whip Chris Hipkins says. “A Civil Aviation Report out today shows that despite being an extremely recognisable figure, Gerry Brownlee… ...
    4 days ago
  • Govt spend on transport out of step with reality
    The National Government is planning to allocate ever increasing amounts of taxpayer funding to build expensive new motorways despite record numbers of New Zealanders flocking to buses and trains, said the Green Party. The Government released its Government Policy Statement… ...
    GreensBy Julie Anne Genter MP
    4 days ago
  • Govt spend on transport out of step with reality
    The National Government is planning to allocate ever increasing amounts of taxpayer funding to build expensive new motorways despite record numbers of New Zealanders flocking to buses and trains, said the Green Party. The Government released its Government Policy Statement… ...
    GreensBy Julie Anne Genter MP
    4 days ago
  • Solar homes stymied by Govt inaction
    Government inaction is allowing the big power companies to discourage the nascent solar power sector, the Green Party said today. Green Party MP Gareth Hughes launched a petition today calling on the Government to empower the Electricity Authority to act… ...
    GreensBy Gareth Hughes MP
    4 days ago
  • Foreign buyers for iconic island must add value
    Labour will look very closely at any Overseas Investment Office application to purchase Pakatoa Island if it is not bought by a Kiwi, says Labour’s Land information Spokesperson Stuart Nash. “Pakatoa is an iconic island in the middle of Hauraki… ...
    4 days ago
  • Way opening for April Sun in Cuba
    The United States of America’s President’s historic announcement yesterday to restore diplomatic ties with Cuba should be applauded by the New Zealand Government. The announcement marks a turning point in more than five decades of hostility between the two countries… ...
    GreensBy Kennedy Graham MP
    4 days ago
  • Minister ducking for cover over ‘Diplomat Case’
    Apparently the Ministerial Inquiry into what now seems to be being referred to as ‘The Diplomat Case’ ( I have a few other names for it) has been completed and is in front of Foreign Affairs Minister McCully. Initial Reports seem to… ...
    GreensBy Jan Logie MP
    5 days ago
  • Energy users need answers on Vector share plans
    Energy Minister Simon Bridges needs to stop ducking for cover about whether or not the Government will support plans to nationalise and then privatise $2.1 billion of shares in the Auckland Electricity Consumer Trust, Labour's Energy spokesperson Stuart Nash says. “It… ...
    5 days ago
  • Biosecurity it’s everyone’s responsibility
    Biosecurity costs New Zealand millions of dollars in attempting pest eradication and much more in ongoing management of pests in farming, horticulture, beekeeping and conservation, as well as in our own backyards and recreation areas. More work must happen at… ...
    GreensBy Steffan Browning MP
    6 days ago
  • Is the Health Minister accountable to the public? He doesn’t seem to thin...
    Lately I’ve been involved in a sort of farcical standoff with the Health Minister, who seems to be under the illusion that I have no right to ask questions about conflicts involving Health Promotion Agency Board member Katherine Rich, and… ...
    GreensBy Kevin Hague MP
    7 days ago
  • Irresponsible tax cuts lead to seventh successive deficit
    National's borrowing to pay for cutting the top tax rate was irresponsible and will likely lead to a seventh successive deficit, the Green Party said today. Treasury have forecast a $572 million deficit this year in its Half Year Economic… ...
    GreensBy Russel Norman MP
    7 days ago
  • Heartfelt sympathy for Sydneysiders
    The Labour Party has offered its heartfelt sympathy to the people of Sydney after the hostage situation in the city, says Labour’s Acting leader Grant Robertson.  “Our thoughts are with all those who went through this horrific and traumatic experience. ...
    7 days ago
  • Farewell at Phillipstown
    Last Wednesday, I attended the farewell for Tony Simpson, Principal of Phillipstown School. It was a very emotional event where many of us in the large crowd shed tears. Bagpipes and tiny tamariki performing kapahaka brought the house down and… ...
    GreensBy Catherine Delahunty MP
    1 week ago
  • The CIA Torture Report
    Earlier this week, the United States Select Committee on Intelligence released the Committee Study of the Central Intelligence Agency’s Detention and Interrogation Program.  The report, which was five years in the making, looked into the CIA’s interrogation techniques from 2001… ...
    GreensBy Kennedy Graham MP
    1 week ago
  • Haere Rā 2014
    We’ve almost reached the end of the Parliamentary year so I wanted to take a moment to reflect on some of my highlights of the term in this blog post. It’s been an absolutely hectic year juggling an election campaign… ...
    GreensBy Gareth Hughes MP
    1 week ago
  • Labour applauds High Court decision on Ruataniwha
    Today’s decision by the High Court on the Ruataniwha scheme is a victory for NewZealand’s environmental groups, says Labour’s Conservation spokesperson RuthDyson. ...
    1 week ago
  • A welfare system for the 21st Century
    Today Child Poverty Action Group released a background paper on ‘The complexities of ‘relationship’ in the welfare system and the consequences for children.‘ The report includes 16 recommendations to modernise our welfare system which is no longer fit for the… ...
    GreensBy Jan Logie MP
    1 week ago
  • Welfare system out of date and out of touch
    A new Child Poverty Action Group report released today highlights another example of how our outmoded social welfare system is harming kids, says Labour’s Social Development Spokesperson Carmel Sepuloni.  “The complexities of how a ‘relationship’ is defined in the welfare… ...
    1 week ago

Public service advertisements by The Standard

Current CO2 level in the atmosphere