Once again somebody I know seems to have had their addressbook harvested
for spam purposes - as evidenced by a half-dozen or more people that
they know (and who are in the addressbook) telling them they have
received spam with their return address.

They do webmail via Juno, so their addressbook is in Juno's cloud.

I'm guessing there are multiple scenarios for this but I have no clue
which ones are likely/unlikely.

- Direct access to Juno's server using unknown means.

- Direct access to Juno's server using the victim's password

- Access to the victim's PC via some sort of malware

- (and the list goes on....)


I told them that the first thing they need to do is change their Juno PW
to something reasonably strong - as in mixed case, numbers and at least
one symbol.

Also told them that they could reduce their exposure dramatically by
using an email client, deleting their Juno addressbook, and just using
the client's addressbook... but that's not going to happen.

Next I'll run MalwareBybes on their PC just in case.

The Questions:

- Is there a single most-likely scenario here?

- Are any of the scenarios I listed extremely
  unlikely?
-- 
Pete Cresswell
--- NewsGate v1.0 gamma 2