April 24, 2014

2 min read

Google Logo Add Us On GoogleAdd SciAm

AOL E-Mail Accounts Churn Out New Spam

Spammers have broken into AOL's mail server to hijack accounts' address books and send tons of spam to those contacts

 

By Jillian Scharr & Tom's Guide

Join Our Community of Science Lovers!

You thought you'd seen the last of it. But your old AOL email address (remember, from the nineties?) could still return to haunt you. Spammers may have broken into AOL's mail server to hijack old accounts and send tons of spam to people in the compromised accounts' address books.

Even if you don't have an AOL email address, you might still find some emails in your inbox, ostensibly from a friend, containing links to spam websites advertising miracle diets.

MORE: 7 Ways to Lock Down Your Online Privacy

On supporting science journalism

If you're enjoying this article, consider supporting our award-winning journalism by subscribing. By purchasing a subscription you are helping to ensure the future of impactful stories about the discoveries and ideas shaping our world today.

The spam first started appearing in the past few days, but AOL hasn't been able to fix the issue.

"Once your account i[s] spoofed, there is nothing else that can be done. I wish there was something we can do," AOL tweeted from its @aolmailhelp account.

AOL says that its servers weren't hacked, but rather that the affected email accounts were "spoofed." This means that while the messages appear to come from AOL accounts, they're actually originating from a server controlled by the spammers. AOL addresses, the company says, are merely being faked.

But as security expert Graham Cluley pointed out on his blog, "this doesn't explain how the emails are being sent to genuine contacts of those particular AOL users – have the address books of AOL users or AOL's mail logs somehow fallen into the hands of malicious third parties?"

Many angry AOL users have taken to Twitter to voice their outrage. The #AOLHacked hashtag is full of users reporting that their AOL accounts are now being used to send spam to their contacts.

AOL says that it might help affected users to switch their email settings to send emails from their own domains. But as most users probably don't own an online domain, that isn't the most helpful of advice.

Copyright 2014 Toms Guides , a TechMediaNetwork company. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

It’s Time to Stand Up for Science

If you enjoyed this article, I’d like to ask for your support. Scientific American has served as an advocate for science and industry for 180 years, and right now may be the most critical moment in that two-century history.

I’ve been a Scientific American subscriber since I was 12 years old, and it helped shape the way I look at the world. SciAm always educates and delights me, and inspires a sense of awe for our vast, beautiful universe. I hope it does that for you, too.

If you subscribe to Scientific American, you help ensure that our coverage is centered on meaningful research and discovery; that we have the resources to report on the decisions that threaten labs across the U.S.; and that we support both budding and working scientists at a time when the value of science itself too often goes unrecognized.

In return, you get essential news, captivating podcasts, brilliant infographics, can't-miss newsletters, must-watch videos, challenging games, and the science world's best writing and reporting. You can even gift someone a subscription.

There has never been a more important time for us to stand up and show why science matters. I hope you’ll support us in that mission.

Thank you,

David M. Ewalt, Editor in Chief, Scientific American

Subscribe