开云体育

The following message was posted by someone using an account on our private group:

On Mon, Nov 12, 2018 at 12:07 AM, Janice wrote:

I found her membership and removed her as a member.? I am assuming somehow her Groups.io membership was hacked.

It seems more likely that her email address was spoofed. See??

Rather than deleting the subscription, I suggest putting her on moderation. Find her subscription record and check the Override: moderated box.
?
Regards,
Bruce

P.S. I occasionally "receive" similar emails from a friend who died four years ago.
--
The system Help is your friend.??/static/help

Janice,

Payment receipt is attached to this letter.

If that message was posted to the members, and it actually had an attachment, post to the group advising them to delete it without opening the attachment - it is likely to be malware.

If that attachment is stored in your group delete it.

I am assuming somehow her Groups.io membership was hacked.

Not necessarily.

As Bruce mentioned it is far more likely that the crook merely used her email address by spoofing. The next more likely case is that the crook gained access to her email account and used it to send the message.

Such a message would only be evidence of her Groups.io account being compromised ("hacked") if it was posted from the Group's web pages. You can determine that from your group's Activity log: look for entries of the form:

[member] sent message "[subject]" ... via web.

If instead it says the message was sent "via email" then it was either a spoof or sent from her email account.

Shal


--
Help: /static/help
More Help: /g/GroupManagersForum/wiki
Even More Help: Search button at the top of Messages list

Janice, very unlikely your group was hacked.? Much more likely your list member's email was either spoofed, or possibly her email account password was hacked.? When I have this happen on my list, I temporarily moderate the affected list owner and send them a private email from the list mods letting them know they were either spoofed or possibly their email account password was hacked.? I suggest to the list member to change their email account password, check their Sent box (if their account was truly hacked, it will be FILLED with these spam messages sent out), and not a bad idea to update their anti-virus/security software, and scan their computer (for any possible bots or trojans).? Once they've done that, let us list mods know by replying to this message, and we un-moderate them.?

Patty Sliney

--
Patty S.

Received from Patty Sliney via Groups.Io at 11/12/2018 02:26 PM UTC:

Janice, very unlikely your group was hacked. Much more likely your list member's email was either spoofed, or possibly her email account password was hacked. When I have this happen on my list, I temporarily moderate the affected list owner...

If I had this happen to a list OWNER or MODERATOR I would (in addition to all your other good and sensible actions) IMMEDIATELY demote that OWNER to regular member status... because **IF** the password was hacked an OWNER can (at worst) delete the group, and a MODERATOR can exercise whatever privileges you've given them.

Jim H

Patty,
Thanks for the good advice.

Janice B
New Statler Siblings?

Curious - If it was a matter of her email address being spoofed, how would the spoofer know she was a member of the GIO group?

On Tue, Nov 13, 2018 at 09:40 AM, Peter Cook wrote:

Curious - If it was a matter of her email address being spoofed, how would the spoofer know she was a member of the GIO group?

The "spoofer" is typically a malware program. It just sends emails to whatever email addresses it finds in the infected computer.

https://en.wikipedia.org/wiki/Email_spoofing
?
--
Gerald