Need helps. I think there is a spyware in my Mac OS X.

This morning I got a lot of delivery failure notification mails from my email provider hotmail. It turns out that someone or something had use my mailbox to send out 2 spam mails to almost all of my contacts, and some of them were failed to delivered therefore I got those notifications.

The person/spyware then deleted the emails in my "sent" box up until June 20. I found these deleted mails, including the 2 that were sent by the spyware, in my "delete" box. Has anyone heard of such a spyware on mac OS X 10.5.8? Any information on this is appreciated

 

Probably got your hotmail password phish'd.

 

Yup, a few times. it could either be a spyware bot you got from installing certain " obtained " software which records usernames and passwords from a keylogger and sends them off to someone for the purposes of getting personal information or sending spam messages.

could also be a phishing attack where you visited a website and entered your hotmail username and password. there is a few links on crackbook and such that say enter your hotmail username and password here to see whos blocking you, but those were nothing more than a good attempt in suckering users in for their ID's.

Run csomething like ClamAV and change your passords with anything even remptly associated with that e-mail address.

Nasty OS X Malware Hitches a Ride With Free Software

or a copy of Pinhead

http://www.techeye.net/security/apple-secretly-updates-anti-malware-for-mac-os-x

I had quite a few instances of these little buggers show up in the last few months but there are more. traditional viruses are not much of an issue anymore but other forms of malware no matter what OS you run, you still need to be careful

 

How do I resolve this problem? do I just change my password?

 

yes and with any facebook and social site, etc associated with that e-mail address. I have had a few users forget to change their facebook etc and have had those taken over as well

 

Well, 1 You should have a different password for every site. Change your hotmail password and make sure you use your log in only on hotmail.

 

Can you be more specific? I don't know if my problem was caused by a malware or something similar. The webpages you linked are too vague for me to resolve this hotmail problem.

 

so there is no need to look for a spyware in my OS X,right?

 

Google search for ClamAV run a scan, but I doubt it will find anything. I'm betting on you being phish'd.

 

Yeah, you are right, couldn't found any virus used ClamAV.

This phishing thing basically means someone/something got my hotmail password while I clicked a link or a picture, so all this person/spyware got was my hotmail password, is that correct?

This spyware may try to use my hotmail account and password to logon to some popular websites such as facebook. It only limited to things that are related to my hotmail account and password, and nothing else should be effected. Am I right?

 

You would of had to use your hotmail email and password on a site that wasn't a real hotmail site but was pretending to be one. Nothing else should be effected unless you use the same password for more then one thing.

 

phishing isn't spyware...

basically you get an official looking email that is fake... with a link that seems real in it to go to your hotmail log in... when you click the link it goes to a totally fake site that looks real... and can even have the real URL listed at the top of the browser... you enter your user name and password, then they have it...

You could also have something that changed the DNS servers on your computer or router, that were compromised, sending you to the fake servers even if you manually type int he right address.... or you connected to some wireless network somewhere that was compromised, and used your log in.