Call 1300 885 420 or +61 444 532 161
iTandCoffee | Patient help with your personal and business technology
  • Home
  • About
    • About iTandCoffee
    • In the media
    • Testimonials >
      • Testimonials 2020-21
      • Testimonials 2019
      • Testimonials 2018
    • Privacy Policy
    • Other Policies
    • Prices
  • Classes
    • What's On
  • Appointments
  • Books | Videos | Tips
    • Books
    • Videos
    • Blog
    • Newsletter
    • Tips Library
  • Gift Vouchers
  • iTandCoffee Club
    • Members Area
    • About the Club
    • Membership Options
  • Store
  • Contact
  • Home
  • About
    • About iTandCoffee
    • In the media
    • Testimonials >
      • Testimonials 2020-21
      • Testimonials 2019
      • Testimonials 2018
    • Privacy Policy
    • Other Policies
    • Prices
  • Classes
    • What's On
  • Appointments
  • Books | Videos | Tips
    • Books
    • Videos
    • Blog
    • Newsletter
    • Tips Library
  • Gift Vouchers
  • iTandCoffee Club
    • Members Area
    • About the Club
    • Membership Options
  • Store
  • Contact
Search by typing & pressing enter

YOUR CART

Tips, Tricks and News 
about all sorts of technology in your life!

28/5/2025 0 Comments

Do you store password information in Contacts? Here's what can happen!

Picture
We are all driven a little (or a lot) crazy by Passwords for online accounts.

And I know that so many people choose to write down their passwords on paper, in Notes on their iPhone/iPad or, sometimes, as entries in their Contacts app. 😱

This may seem like a good solution, on the basis that you probably assume that only you can see the contents of your Contacts app.

An iTandCoffee client only last week found that this is not the case - and that a scammer had access to all her Contacts and the passwords she stored there (as well as all sorts of other things).
With the number of clever scams emails around, it can be very easy to be caught out by one that looks legitimate - and to sign in to an account when asked to do so.

This is exactly what this iTandCoffee Client did recently.

She received an email from a friend, sharing a OneDrive file with her - and when requested, she signed in to her Microsoft account to check out that shared document.

She didn't realise she had been caught out - that the document was a scam and that her sign-in credentials had been stolen.

It was only when some of her own contacts also received the same strange document sharing invitation - this time from her - that the scam was uncovered.

I was one of those contacts, and here is the message I received from her. Everything about it looked authentic, and I am not surprised she (and anyone else) would be caught out by this one.
Picture
I texted her straight away, sending a screenshot of the message and asking if she had sent it (fairly sure she hadn't). I warned her that I suspected she had been hacked and that the hackers may have access to her Microsoft account. To be safe, her Microsoft password needed to be changed, and her account needed to be fully secured and checked for other issues.

She changed her password as soon as she could (a few hours later), but found she subsequently stopped receiving any mail to that account - an issue she sought assistance with about 3 days after the initial hacking incident.

Here's what had happened in the time up until her password was changed. In fact, it could have continued for the 3 days, since changing the account's password may not have locked the hackers out of her account. (We'll talk about the extra step required block all signed-in sessions, apps and devices shortly.)

In the time the hackers had access, they would have been able to view all her emails in that Exchange account, and glean any valuable information that they could from these emails. This included emails that had some login credentials for some key aspects of her business.

They planted a Rule for her Exchange emails that automatically moved any received mail straight to another folder - which meant she stopped seeing her incoming mail and thought the account wasn't working properly.

By doing this, the hackers could monitor her incoming and outgoing mail for anything that they could use to defraud her or someone with whom she corresponded. They could delete any evidence of what they sent.

They may well have hoped to quietly 'camp out' in her account for a prolonged period, waiting to execute a 'man in them middle' attack if she received or tried to send an email relating to anything financial. 

The fact it was a Microsoft account also meant that they would have had access to her OneDrive/Sharepoint and any files stored there. (Luckily she didn't user either of these much in her small business, so there wasn't much content there.) 

Importantly for this client, the hackers also had access to the list of Contacts stored in her Microsoft Exchange account.

This would have allowed the hackers to steal that list of contacts, sent emails to these Contacts pretending to be her, and attempt to catch out others in the same way that they caught her out - or maybe pretend to be her and send emails trying to con money from her contacts.

And unfortunately for this client, she had also used Contacts as a place for storing passwords.

So the scammers had full access to the list of passwords that she had stored there - and could therefore gain access more than just the Microsoft Account.

You can imagine the stress this poor victim suffered as a result of this experience.

The fall-out continued in the week after the incident, as further accounts may have been compromised using information found in her Microsoft account. And her account was 
registered as spam email address, meaning she was blocked from sending any mail until we unblocked it.

Some lessons from this incident
  1. ​If you don't yet have it, your must set up Multi-Factor Authentication for accounts like this. For the incidents like this, this may have prevented the scammers from accessing the victim's account - as the email address/password would not have been sufficient to sign in to the account. 
  2. Always be suspicious of emails (and texts) that ask you to click a link - even if they are from a friend. Check with the friend first to see if they sent it. Don't click unless you have checked and are absolutely sure. Check the content of the link first. (Note. In the above case, this this not uncover any problem - as it was the file that had been shared that contained the issue, not the link itself.)
  3. If you are asked to sign-in to a website, be absolutely sure the website address is valid. But rather than take the risk, visit the website and access your account from the legitimate website address without clicking the link.
  4. It is a essential these days to use a Password Safe to auto-fill passwords, because such safes will not autofill if the site/sign-in request is fraudulent. This can help identify issues.
  5. Never store your passwords in Contacts (or in a Word/Excel document on your computer).
  6. If you ever suspect your account has been compromised, change the password immediately! Don't delay. Seek help as quickly as possible if you are not sure how to do this.
  7. Especially for mail/cloud/financial accounts, also make sure to find the option to Sign out everywhere, to make sure that any authenticated session, apps and devices are signed out. For Microsoft accounts, this is found at myaccount.microsoft.com (as shown in the image below).
  8. If you ever need to check who has had access to your Microsoft account, go to Review Recent Activity on the same page (see image below)​. 
Picture
As a side note, if you need proof that multi-factor authentication is essential for your online accounts, check out the screen shot I just took of the results I got from Review Recent Activity for my own account! So many attempts to hack my account!
Picture

Need help with this or any other technology issue/question?

We have focused on Microsoft 365 above in the discussion of how to secure your account. If you need help with securing any other type of account (or any other technology question/issue), make a time with iTandCoffee.
0 Comments

Your comment will be posted after it is approved.


Leave a Reply.

    Receive great articles like this 
    fortnightly to your Inbox

    Picture

    Follow us on Facebook

    iTandCoffee

    Picture

    Join the iTandCoffee Club

    ​for free content, tutorials, videos, classes, offers, discounts and more

    Join our growing community of local and online members who love learning about their technology - through FREE club sessions, remote/phone support, online tips, tricks and tutorials, special members-only offers and discounts, and more. Membership starts at only $49/year.
    Find out more about The iTandCoffee Club

    What's on at iTandCoffee ?

    Below is our list of videos, classes and other events that are coming up soon.
    ​Videos shown are offered for eligible members of the iTandCoffee Club.
    If you have questions, why not join fun and informative 'user group' meetings, held once a month.
    All iTandCoffee classes are run as online classes (using Zoom), which means you can attend from anywhere.

    Archives

    May 2025
    April 2025
    March 2025
    February 2025
    December 2024
    November 2024
    October 2024
    September 2024
    August 2024
    July 2024
    June 2024
    May 2024
    April 2024
    March 2024
    February 2024
    January 2024
    December 2023
    November 2023
    October 2023
    September 2023
    August 2023
    July 2023
    June 2023
    May 2023
    April 2023
    March 2023
    February 2023
    January 2023
    December 2022
    November 2022
    October 2022
    September 2022
    August 2022
    July 2022
    June 2022
    May 2022
    April 2022
    March 2022
    February 2022
    January 2022
    December 2021
    November 2021
    October 2021
    September 2021
    August 2021
    July 2021
    June 2021
    May 2021
    April 2021
    March 2021
    February 2021
    January 2021
    December 2020
    November 2020
    October 2020
    September 2020
    August 2020
    July 2020
    June 2020
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    December 2019
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    February 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017
    July 2017
    June 2017
    May 2017
    April 2017
    March 2017
    February 2017
    January 2017
    December 2016
    November 2016
    October 2016
    September 2016
    August 2016
    July 2016
    June 2016
    May 2016
    April 2016
    March 2016
    February 2016
    January 2016
    December 2015
    November 2015
    October 2015
    September 2015
    August 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015
    February 2015
    January 2015
    December 2014
    November 2014
    October 2014
    September 2014
    August 2014
    July 2014
    June 2014
    May 2014
    April 2014
    March 2014
    February 2014
    January 2014
    December 2013
    November 2013
    October 2013
    September 2013
    August 2013
    July 2013
    June 2013
    May 2013
    April 2013
    March 2013
    February 2013
    January 2013
    November 2012
    October 2012
    September 2012
    August 2012
    May 2012

    Categories

    All 1800-number Accessibility Accessories Activity Monitor Adware AI Airdrop Airplay Airpods Alarms Alerts Android Apple Id Apple-id Appleid.apple.com Apple Music Apple News Apple Pencil Apple Tv Apple Watch Apps App Store App Windows Apss Audio Autolock Automatic-downloadsupdates Automator Backup Backups Battery Be-connected Be-connected Bigpond Big Sur Bitcoin Blockchain Bluetooth Books Boot Camp Budgetting Business Buying Guide Calendar Camera Canva Captcha Catalina Cellular Data Centrelink Channel 9 Charging ChatGPT Christmas Chrome Classes Client Stories Clipboard Cloud Cloud-storage Cloud-storage Club Club News Colours Com Compass Contacts Continuity Control-center Control Centre Convert Cookies Copilot COVID COVID 19 COVID-19 Cybersafety Datad777f385d3 Data Usage Delete Desktop Dictation Dock Do Not Disturb Downloads Dropbox DVD Education El-capitan Email Emergency Emojii Entertainment ESIM Ethernet Evernote Excel Facebook Family Family History Files Finance Finder Find My Find My Car Find-my-iDevice Fingerprint Sensor Fonts Force Reboot Forgetting Curve Fraud Free Friday Gift Ideas Gmail Google Google Drive Google Flights Google Photos Google Sheets Government Services Guides Handbrake Handoff Handy Hints Hard-drive-crash HDD Health High Sierra Home Button Homepod Home Screen Hotmail Housekeeping Humour ICloud ICloud Backup ICloud Drive ICloud Family ICloud Photo Library Identity Identity Theft Images Image-to-text IMAP IMessage Imovie Instagram Internet Internet Issues Internet-options Internet-options Ios Ios-11 Ios-11 Ios-12 IOS 13 IOS 14 IOS 15 IOS 16 IOS 17 IOS 18 Ios Photos IPad Ipad-tips Iphone Iphone-12 IPhone 13 IPhone 16 Iphone-8 Iphone8 Iphone Basics Iphone-calendar IPhone Mirroring Iphone Settings Iphone-x Iphonex Ipod Itandcoffee Itandcoffee Club Itandcoffee News Itandcoffee Services Itandcoffee-swap-shop Itandwine Itunes Junk Keyboard Keychain Kids And Technology Kidsandtechnology Lifestyle Lock Screen Mac Mac-basics Mackeeper Mac Mail Mac-mail Mac-monday Macos MacOS Sequoia Mac Photos Mac-photos Mac Tutorials Mac-videos Magnifier Magsafe Mail Malware Maps Measure Media Medical-id Messages Messenger Microphone Microsoft Microsoft 365 Mobile Banking Mobile Data Mobile-data Mobile Porting Mojave Monterey Motion Mouse Movies Multitasking Music MyGov My-health-record NBN Netflix Notes Notifications Number Porting Office 365 Onedrive Onenote Online Safety Online-safety Optusnet Os-x Outlook Pages Parental Controls Passwords Paypal PDF Personal Hotspot Phishing Phone Photo Book Photo-books Photos Photos On Mac PLAYLIST Podcasts Popups Powerpoint Preview Printing Privacy Productivity Product Launch Publicity Publicityads57a389ac69 Publisher Purchasing-an-idevice Qa QR Code Quicktime Raise-to-wake Ransomware Reachability Reboot Recommendations Recovery Relay Reminders Remotewipe Repairs Restore Restrictions Rings Rotation-lock Router Safari Safari-favourites Samsung Santa Scam Scam Email Scams Scan Scannable Scanning School-ipad Scoopit Screen Screen-brightness Screensaver Screenshots Screen Time Scrolling Secondhand-devices Security Sell Seniors Seo Services Sessions Settings Share Shared-calendar Shop Shopping Shortcuts Sierra Signature Silent-auction Sim Siri Skype Slideover Slides Slideshow Slideshows Slow-device Slow-mac Smart-tv Sms Snapfish Social Media Socialmedia Software Update Softwareupdate Software Updates Sonoma Sounds Spam Spinning-beachball Split Screen Split View Spotlightsearch Startup Storage Storage Space Streaming Subscriptions Sunrise Switch Symbols Sync System Preferences Task Manager Tasks Task-switcher Taskswitcher Teams Technology Technologyarticles Technologydependency Technology-lifestyle Technology-solutions Technologytips Techsupport Telco Telcos Telstra Telstracomplaint Text Text Replacements Theft The-katering-show Thermomix Thesenior Timemachine Time-to-leave Tio Toys Trackpad Training Videos Transcribe Translate Travel Travel Sim Tripadvisor Troubleshooting Tutorial Tutorials TV Two Factor Authentication Twofactor-authentication Two-step-verification Typing Typing Shortcuts Undo Universal Control Unlock Update Updates Upgrade Uppercase Usage User Group Utilities Ventura Video Video-blog Videos Virus Voice-and-data Voicemail Voice-memos Volume Vpn Wallet Wallpaper Warnings Weather Web Browser Website Weebly Whatsapp Widgets Wi-Fi Wi-fi Wifi Wifi084d04ddac Wifi-calling Windows Windows 10 Windows10 Windows 11 Word Wordpress Worldclock Yosemite Youtube Zoom

    RSS Feed

27 Sycamore St, Camberwell, Victoria Australia
(also located in 
Daylesford)

​​Call  +61 444 532 161  or  1300 885 420

​to book an appointment or class, or to enquire about our services and products


Seniors Card Welcome
SENIORS CARD WELCOME HERE:
Seniors Card holders qualify for a 10%* discount on eligible classes booked and paid for online. 
To activate the discount at the time of booking, select Redeem Coupon or Gift Certificate and enter 10OFFSEN before selecting Pay Now
Seniors can also save $5** on the first full hour of appointments booked online. Enter Coupon Code of 
BASEN5 when booking to receive this discount.
* Some heavily discounted classes are excluded from the 10% class discount offer.
** Where more than one type of discount is available, only one type of discount can be used.

Services
Classes
Event Calendar
Private Appointments
Gift Vouchers
Remote support
​Business Services
​Help for families

Online Content
​Newsletter
User Guides
Video tutorials/classes
Tips and Hints
​Blog
iTandCoffee Club
About the Club
Free Club Sessions
Sign In/View Account
Members Area
Prices/Policies
Prices
Privacy
Cancellations, Refunds, Returns
About iTandCoffee
Home
About

​Contact us
Testimonials
In the press

Picture
​© 2012-2025 iTandCoffee Pty Ltd. All rights reserved  ACN: 606 340 434