Re: Compromised email account?

[travislee.petersen () gmail com]

I have experienced exactly the same. My system email account had more than 60000 'Message undeliverable' motices.

I copied and pasted an email from my ISP:

"I simply notified you after tracking down a phishing email that was proxied thru your system.

SailHeat (aka) S4!Lh34t has compromised a lot of systems. It appears after compromising them he adds shell.php or an 
email proxy.php script.

He seems to specialize in cracking passwords which would probably explain your email account password compromise."

Can anybody suggest how to remove this and secure my email account?

Thanks in advance
Travis Petersen
------Original Message------
From: Jacob Bednarz
Sender: listbounce () securityfocus com
To: security-basics () securityfocus com
Subject: Compromised email account?
Sent: Feb 8, 2011 5:14 AM

Hi,
After awaking this morning, I found my inbox riddled with failed  
delivery notices from my service provider. Wierd thing is I haven't  
sent emails from the address in weeks.
Does this mean my inbox has been compromised? If so, is there anything  
I can do to reclaim it and maintain it without this issue occuring  
again?

Jacob.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------



Sent from my BlackBerry®