I had a rather scary, and odd, experience while we were on the road back to Columbus yesterday. I have my blackberry setup to get email from my main Gmail account as well as my work email account, and as we were driving up Route 23 in Kentucky, I noticed an email to that Gmail account, from my other, much less frequently used, Gmail account that was spam. When I went ahead and logged in to that account, I also spotted 3 autoresponses to the spam email from addresses I was vaguely familiar with, as opposed to the random unfamiliar addresses you usually see when your email address is spoofed.
Sure enough, the spam was in my sent box. Obviously, someone had accessed the account in order to send that email. So, I changed my password immediately and my security question later, when I wasn’t working on my blackberry. That account wasn’t tied to any other Google services, as I said, it isn’t my main account, but I also went ahead and changed the password on that one to be safe, and any other service that I thought might have sent an email to that account. I’m slightly befudded as to how that account got compromised. I don’t even log in to it very often, let alone on a public PC or insecure wireless network. Since we were out of town, my immediate thought was that someone had sniffed the password on the hotel wireless, but I don’t think I even logged in to that account. Perhaps there’s some Gmail notified or other service on my iGoogle page that logs in to it and checks for email, and the password got sniffed there, it’s hard to say.
Of course, a little research shows me that this has happened before to others, and it’s something that’s been happening for awhile now. Still it appears no one has a definite answer as to how the account got compromised, so if anyone has more info on that, I’d love to hear it!