Check if your email password was hacked

AGO Self Help Brochures

Antitrust/Unfair Trade Practices

Business Resources

Consumer Alerts & Events

Consumer Alerts

All Consuming Blog

About the All Consuming Blog

Ask the AG Column

Calendar of Events

Special Programs

Shredathons

Consumer Issues A-Z

File a Complaint

Internet Safety

Lemon Law

Manufactured Housing Dispute Resolution

Utilities (Regulated)

Volunteer!

What the Office Does

en Espanol

Safeguarding Consumers > Consumer Alerts & Events > All Consuming Blog


	Return to main blog

Check if your email password was hacked

Thousands of personal e-mail passwords belonging to Gmail, Hotmail, Yahoo, AOL, Earthlink and Comcast users were posted online after a phishing scheme targeted users of Gmail, Hotmail and others, according to news reports.

News reports indicate the companies believe the passwords were obtained through phishing, but at least one researcher blames a botnet attack. A message on Microsoft's Windows Live Spaces site says company has blocked access to potentially exposed accounts.

You can check if your account was on the list. Thomas Springer, of serversniff.net (http://serversniff.net/index.php), reportedly tracked down the lists of 40,000 accounts, put them in a database and made a simple site for queries. The site asks only for the first part of your email address (before the @).

{UPDATE:} A few consumers have asked whether this is just a phishing site. I'll be frank - I wasn't familiar with the Web site either. Thomas Springer lists a German address. But the site was referenced by Computerworld and other reputable publications so I felt OK including the site here -- especially since it doesn't ask for passwords. Note that he himself suggests that you change your password. See http://beta.serversniff.de/mailaccount-faq. The site apparently has been unable to keep up with the massive traffic as a result of people checking its database, so it's experienced a few crashes.

Posted by Kristin Alexander All Consuming Blog Moderator at 10/12/2009 05:26:48 PM |

You spelled "scheme" incorrectly. [BLOG MODERATOR'S RESPONSE: Thanks. I fixed it.]
Posted by: M. Kendall ( Email ) at 10/28/2009 1:05 PM

I think the link to the Springer site is suspicious. The server is in Berlin, Germany. And who is Thomas Springer? Could serversniff.net be a phishing site?
Posted by: E Estrada ( Email ) at 10/13/2009 11:44 AM

Try the link now. Serversniff was referenced by Computerworld and other reputable publications so I felt OK including the site here -- especially since it doesn't ask for passwords. The site apparently has been unable to keep up with the massive trafic load as a result of people checking its database. Thomas Springer apparently is in Germany -- so the site is published in both German and English. See: http://www.serversniff.de/impressum.html. For privacy concerns, see also: http://beta.serversniff.de/mailaccount-faq.
Posted by: KRISTIN ALEXANDER, ALL CONSUMING MODERATOR ( Email ) at 10/14/2009 4:01 PM

The link to serversniff.net on the AG's blog does not work. I'll try typing the address into my browser line.
Posted by: Carol Greenough ( Email ) at 10/13/2009 8:53 AM

Leave a comment
	Name (Required)
	Email (Required)
	Homepage
Comment

All comments are reviewed to ensure compliance with our Blog Comment and Use Policy. Comments are generally posted within two business days.

Send Feedback

contact the webmaster> privacy notice> print this page> sitemap> home> access washington®>
1125 Washington St SE • Po Box 40100 • Olympia, WA 98504 • (360) 753-6200