Sign in with
Sign up | Sign in

AOL Hacked, User Account Info Compromised

By - Source: AOL | B 1 comment

AOL was hacked after all.

Last week the level of spam with AOL email addresses jumped up significantly, filling inboxes with garbage emails. At the time, the company insisted that its mail servers weren't hacked, but instead spammers with their own email servers were "spoofing" legit AOL email addresses. Changing passwords doesn't remedy the issue since nothing was hacked to begin with.

"Spoofing is a tactic used by spammers to make it appear that the message is from an email user known to the recipient in order to trick the recipient into opening it. These emails do not originate from the sender's email or email service provider -- the addresses are just edited to make them appear that way," writes AOL's Mail Team.

The company announced that it was on the case, and now AOL reports that there was unauthorized access to information regarding a "significant" number of user accounts. Hackers managed to grab email addresses, postal addresses, address book contact information, encrypted passwords, encrypted answers to security questions, and certain employee information. They might as well have grabbed our wallet or purse.

"We believe that spammers have used this contact information to send spoofed emails that appeared to come from roughly 2-percent of our email accounts," the team writes.

The team says that at this point in the investigation, there's no indication that the encryption on the passwords or the answers to security questions was broken. There's also no indication that this incident resulted in disclosure of users' financial information, including debit and credit cards, which is also fully encrypted.

Still, AOL wants users to change passwords and security questions.

"The ongoing investigation of this serious criminal activity is our top priority," the team writes. "We are working closely with federal authorities to pursue this investigation to its resolution. Our security team has put enhanced protective measures in place and we urge our users to take proactive steps to help ensure the security of their accounts."

The team warns that users should not open suspicious emails, and do not click on attachments. If you receive an email with a known AOL address, contact the other party and see if it's legit. Never provide your sensitive personal information in an email to anyone, such as bank details and passwords. If you're a victim of spoofing, tell all your friends so they won't click on disguised attached malware.

"AOL is notifying potentially affected users and is committed to ensuring the protection of its users, employees and partners and addressing the situation as quickly and forcefully as we can," the team writes.

Add your comment Display 8 Comments.
  • 0 Hide
    segio526 , April 29, 2014 10:54 AM
    Seems redundant. Given the typical AOL user, I'm pretty sure all their data was already stolen long ago! Hackers gained nothing new!
  • 0 Hide
    n3cw4rr10r , April 29, 2014 11:23 AM
    People still use AOL? Holy shit, I remember using it back in the 90s .. You Got Mail !!!
  • 0 Hide
    derekullo , April 29, 2014 12:14 PM
    User: I believe your system was hacked. My account is sending spam to all my friends.

    AOL: We weren't hacked. Getting hacked costs us a lot of money.
  • 0 Hide
    Quarkzquarkz , April 29, 2014 1:15 PM
    Listen, who the heck still uses AOL? If you ask me, if you still use this ancient service provider, you deserved to be hacked.. I'm sorry~ =(
  • 0 Hide
    kawininjazx , April 29, 2014 1:45 PM
    I run a computer store, everyone over 40 has AOL, it's horrible.
  • 0 Hide
    rantoc , April 29, 2014 3:20 PM
    Gotta love the mentality of collecting all eggs on one convinient place for any skilled hacker - the cloud gotta be their best friend :) 
  • 0 Hide
    rpgplayer , April 29, 2014 4:51 PM
    "AOL Hacked, User Account Info Compromised"
    Both of them?
  • 0 Hide
    boytitan2 , April 29, 2014 5:27 PM
    Screw it just gonna transfer everything important to gmail. Manageing 3 email accounts was getting to be a pain in the but anyways.
React To This Article