Top
YOU ARE HERE: » Home / web & tech / Protect Yourself Against MySpace Profile Hacking

Protect Yourself Against MySpace Profile Hacking

November 16, 2006 | 20,889 views | Trackback | |

MySpace

UPDATE: See also "MySpace Security Mockery"

There's a disturbing and annoying new trend that is becoming fairly rampant on MySpace these days, and that trend is Bulletin spamming through profile hacking.

The term "hacking" refers to a certain collection of low-life scum out in cyberspace deceiving you in one way or another, in such a way that you unwittingly give up your email and profile password to them. Once they have your details, they can then log into your account and start posting SPAM bulletin posts from your account with headlines such as the following I have received lately from some of my friends:

  • "Funny New Video" or
  • "hot new pic/cam related myspace site!" or even something like
  • "HOTTEST NEW FREE RINGTONES!"

It's basically stupid stuff being advertised that you will easily be able to recognise, generally because the content will be VERY out of character in regards to what that "friend" normally posts.

It's annoying I know... and the only way really to combat the problem is through education - hence why I am writing this to explain to everyone how the hacking can potentially occur, how you can protect yourself from being hacked and what you need to do to stop hackers from accessing your account and using it to spread SPAM bulletins to all your listed friends.

1. How Does Hacking Occur?

NB. I'm not suggesting in any way that this is the ONLY form of profile hacking when it comes to MySpace. I'm just providing information on one of the most common forms in the hope that it will better arm you to combat the attempts.

Ironically, most hacks occur as a result of people viewing bulletin posts that have been posted by one of their "already hacked" friends.

For example, here is a bulletin I received from my friend Cassie just this morning.

Cassie's Bulletin

 

Trust me when I say the content of the bulletin "ain't exactly customary" of Cassie, and therefore is a clear example of a hack attempt and provides a great example to run through and learn from.

If you click on the link featuring in the bulletin, you are taken through to a site that for all intents and purposes appears to be a MySpace login page.

MySpace Login Page

 

The hook here is that the text "You Must Be Logged-In To Do That!" is presented which, if you're not careful, will result in you doing just that - entering in your MySpace login email and password. As soon as you hit the Login button, you will indeed be sent through to your MySpace page, but meanwhile your login details are sent to the hackers database ready for them to start using to hack your profile. This method of trickery is also known as "Phishing".

2. How Can You Prevent Yourself From Being Hacked?

MySpace Login

If you look carefully at the MySpace mirror (replication/imitation) site you are linked to (see above screen shot), you will note that the page URL is nothing like what you would see if it was a genuine MySpace page. The "myspace.com" domain doesn't even feature at all. This is a unmistakable marker that you are in the process of being hacked.

MySpace actually publish a pretty visible warning on their login pages warning you against what I have just mentioned. I have posted the warning here so you can see what I mean by "myspace.com" featuring in the domain/URL and therefore signaling a genuine MySpace page.

For those of you who made the recent upgrade to Firefox 2.0, you should never run into this problem as the browser has an excellent "phishing" warning system built in that will warn you that something is not right about the page you have arrived on. Here's an example graphic of how my browser caught the bogus MySpace login page mentioned above before I had any chance of submitting my details.

Firefox Warning

 

If you are using crappy old IE 6.0 or something like that, you can better protect yourself by downloading and installing Firefox 2.0 which you can easily do by clicking the banner below.


3. How To Beat The Hackers

So you're pretty sure you've already fallen victim to a hacker? Well the solution is actually pretty simple.

Without the correct profile login details for you, they can't access your profile anymore and therefore can't send out anymore crappy bulletins. All you need to do is get into your Account Settings and:

A) change your password to something new - something contains greater than 6 characters and features a mixture of both letters and numbers.

B) change your password AND the email address you use as your login. This will only be a viable option for those of you who have a secondary address that you regularly use.

Changing all these details around will effectively block the hackers from getting into your account ever again.

Finally, you may not feel that being hacked is that big a deal? Well let me tell you it is! At the moment the hackers may only be accessing your account to post crappy bulletins, but the potential for damage that they could cause using your login is unlimited. Take these possible applications for example:

  • Posting pornographic images in your pictures area
  • Leaving abusive comments on the profiles of your friends
  • Conducting unsavory posting activity within the "Forum" or "Group" areas that could result in your profile being suspended.

Either way, it's a scary thought, so please be mindful of the information I have presented above. If you got any value out of what you read, please leave me a message below.

VisitorsFiled Under web & tech  | Trackback | |

Related Posts

Your Comments

15 Responses to “Protect Yourself Against MySpace Profile Hacking”

  1. Comment by Lindsay on November 16th, 2006 @ 3:14 pm
    My Icon

    Masey, I am so glad that you have the time to explain this in an easy to follow blog. Doing support and working through computers myself we see alot of these types of scams and as always education is the best defense.

    Keep it up

    Lindsay

    how did your header/footer turn out?
  2. Comment by Masey on November 16th, 2006 @ 3:51 pm
    My Icon

    Linds... the footer is a "project on hold" at this stage. As per usual I'm held back because IE doesn't support the "fixed position" CSS rule. One of these days everyone will wake up and make the switch to something else... Firefox, Opera or whatever... then us web developers would have our work cut in half! I'm kind of getting sick of having to come up with styling hacks so things work properly in IE. *sighs*
  3. Comment by Jordan on November 16th, 2006 @ 4:26 pm
    My Icon

    Awesome post, Rob. *link*
  4. Comment by Tomi on November 16th, 2006 @ 5:12 pm
    My Icon

    Hey Ya Rob,

    Good on you for doing the ground work on this one!!!

    Take Care hun

    Love Tomi xxx

    PS Happy Birthday too
  5. Comment by Moo on November 17th, 2006 @ 2:08 am
    My Icon

    I can boldly go forth on my (seemingly pointless) MySpace journey with newfound confidence... armed with the knowledge of how/when/why these dorks do what they do.

    What kind of sad loser takes the time to come up with this crap? Hackers & Graffiti "artists"... perfect inhabitants of the small deserted island I shall build when I become Prime Minister. It shall be barren. It shall have a moat. The water within the moat shall be infested with piranhas. Luxury items shall be provided: one cd player with surround sound... with no OFF button + ONE complimentary cd - "The Very Best of Billy Ray Cyrus". VOTE 1 MOO!

    Oh yeah... I found the post very helpful. Cheers!
  6. Comment by Falon on November 28th, 2006 @ 1:35 am
    My Icon

    Well someone hacked into my brothers account and wont leave me alone or his other friends..this person is sick! Once they were in though they changed his password and so he is totally locked out of it and they are having a field day in there..and I emailed myspace customer service and no response..please help?! What do we do to get back into his account?
  7. Comment by Masey on November 28th, 2006 @ 2:24 am
    My Icon

    You're in a bit of a lose/lose situation here I think. Without any knowledge of the password they have created in there you've not got a leg to stand on in terms of getting back in there. All you can really do is continue to bug the MySpace tech/feedback teams until you DO hear something back.

    To be honest I think a lot of people are getting fed up with MySpace these days as the security measures they have in place are pretty poor and people are getting hacked left, right and center.

    Something needs to be done, there's no doubt about that!
  8. Comment by Derek on November 21st, 2007 @ 9:34 am
    My Icon

    Hey man, nice work!

    I think you could do some serious good here, we'd love to have you aboard and I think people would really appreciate your advice>

    http://groups.myspace.com/eVengence
  9. Comment by Lucas on December 1st, 2007 @ 12:11 pm
    My Icon

    Thanks a lot for the education i feel really stupid that i gave away my password so easily
  10. Comment by susaan on December 27th, 2007 @ 4:22 am
    My Icon

    Tom just sent me a message,about ringtones...reported it as spam,but now my bulletins will not post,in fact,the bulletin window has not been visible on my band profile for about 2 weeks...am i guilty by association..?
  11. Comment by Masey on January 31st, 2008 @ 10:01 am
    My Icon

    Tom is just evil... pure evil... I thought you would have caught onto that by now! :P
  12. Comment by Seth Cudd on April 4th, 2008 @ 8:47 pm
    My Icon

    Thanks for the info...it's very helpful. :)

Trackbacks

  1. masey» Blog Archive » MySpace Security Mockery
  2. Tell Ten Friends» Blog Archive » Facebook is Methadone for MySpace Addicts
  3. Identity Theft - How To Protect Your Myspace Profile | Top Internet Guides

Got something to say?





Bottom