Hotmail account hacked

smurph6

Hi there!
I'm having some trouble with my hotmail account. Someone hacked into it from Nigeria and sent email to all my contacts. I've managed to log in again and change password yet they still have access to emails as I can see they're deleting ones I have sent from my gmail and other emails people have sent. How do I rectify this

shayno90

Setup 2FA straight away.

https://www.microsoft.com/en-us/safety/online-privacy/hacked-account.aspx

(Link no longer exists but this was the content)

How to recover your hacked Microsoft account
If you think your Microsoft account has been hacked, we recommend that you reset your password right away. To change your Outlook.com (formerly Hotmail) password, sign in to your Microsoft account, and then go to the Password and Security section. It's a good idea to choose a password that you don't use elsewhere.

Can’t access your account?
There are ways to recover your account, even if a hacker has changed the password. If your account has been hacked, first try to reset your password. If you previously connected your account with an additional email address and/or a mobile phone number, we will send your new password there. You don’t need to know the password to reset it.

If you can’t reset your password, and you haven’t already added security information to your account, you can still get back into the account by filling out a questionnaire. You will be asked specific questions about the account and email messages that might be stored there. Someone will get back to you within 24 hours (typically a lot sooner).

https://account.live.com/acsr?mkt=en-US&mn
Questionnaire link

Gmail advice on this:
https://support.google.com/mail/answer/7036019?visit_id=1-636685866679582266-114255678&rd=2

donaldtramp

Also it's possible that you haven't killed any active sessions on the account yet, and they are still accessing it using cookies as opposed to a password.

Not sure what the whole HotMail deal is with this type of stuff, but maybe try logging out in the hopes that it'll kill their session(s).

verycool

donaldtramp wrote: »

Also it's possible that you haven't killed any active sessions on the account yet, and they are still accessing it using cookies as opposed to a password.

Not sure what the whole HotMail deal is with this type of stuff, but maybe try logging out in the hopes that it'll kill their session(s).

Gmail lets you log out of all sessions from at link at the bottom of the screen, but as far as I know Hotmail doesn't (or now it's Outlook).


As another poster mentioned set up Two Factor Authentication as soon as. It might be a pain in the ar*e, but it'll save breaches like this in the future. Lock down your account settings too. Check every single option!


https://support.microsoft.com/en-us/help/12408/microsoft-account-about-two-step-verification

donaldtramp

verycool wrote: »

Gmail lets you log out of all sessions from at link at the bottom of the screen, but as far as I know Hotmail doesn't (or now it's Outlook).


As another poster mentioned set up Two Factor Authentication as soon as. It might be a pain in the ar*e, but it'll save breaches like this in the future. Lock down your account settings too. Check every single option!


https://support.microsoft.com/en-us/help/12408/microsoft-account-about-two-step-verification

Well, if you can't reset settings, the 2fa won't do ****.

No point making preventative measures now that someone already has access.
I'm assuming they haven't cracked your password for a second time after you've already changed it, they obviously have access to an active session so first you need to kill that.