24591Re: [Y-Mail] James, your password was stolen
- Mar 15, 2013
> From: Donna Lee <donna74128@...>Earlier I gave proof that such spam is sent using stolen password, not cookie.
> How do you know he has Windows? Maybe he has a Mac or a Linux system.
That excludes XSS exploits, so quesses of some security researchers are wrong.
Password-stealing trojans are known, for example:
The trojans are silently installed with drive-by exploit kits, for example
These trojans and exploit kits can work under Windows only.
Therefore, James entered the password in Windows, if not at home then
at work or at an Internet-cafe. Every time I asked, the password was
entered in Windows.
- << Previous post in topic Next post in topic >>