Uh oh, opened spam. How bad could it get?

[Leaper]

I was a dummy and opened an email in my iPad mail client from someone I didn’t recognize (I have a job interview today, and thought it might be related). Nope, spam.

In addition to letting the bad guys know I’m here, I also got repeated attempts to log me into stuff like FaceTime and other such apps. What are the chances it got into apps already opened? I know the virus threat is low, but could I have given away any passwords? I don’t think so, but I’d love to confirm.

[Leaper]

Just remembered one of the other password demands: iCloud. Thus my concern.

I also found myself unexpectedly logged out of iMessage, but I’d also just restarted the iPad, so I don’t necessarily connect the two.

[Kenm]

If you can turn off images loading automatically, any web bugs can’t be returned to the spammer.

In email
Web bugs are frequently used in email marketing as a way of determining which recipients open the email. Doing this allows marketers to know who has seen the promotion or announcement that they have sent, and allows them to back-off or re-engage appropriately.
Some email web bug tracking can be disabled by:
• Turning off HTML display, displaying text only.
• Turning off image display, while still using HTML.

[Leaper]

I did; I checked on that as soon as it happened. “Load remote images” is indeed off. Yet I saw images.

[flight]

There are two kinds of images, those are sent with the message, and those that are retrieved from the web. The second kind are the remote images that are not loaded. The first kind is generally not dangerous.

[Johnny_L.A]

I just opened SPAM[sup]®[/sup].

It was delicious on a sandwich.

[Xema]

Johnny_L.A:

I just opened SPAM[sup]®[/sup].
It was delicious on a sandwich.

You really ought to serve eggs, spam, spam and bacon with that.

[Curid1992]

Leaper:

I was a dummy and opened an email in my iPad mail client from someone I didn’t recognize (I have a job interview today, and thought it might be related). Nope, spam.

In addition to letting the bad guys know I’m here, I also got repeated attempts to log me into stuff like FaceTime and other such apps. What are the chances it got into apps already opened? I know the virus threat is low, but could I have given away any passwords? I don’t think so, but I’d love to confirm.

I don’t think your email address or iPad would have been compromised by this. However, you might want to be a bit on the safe side and consider system restoring (or factory resetting) your iPad.

Luckily I haven’t had any such bad luck with regards to spam email.

And make sure you mark any more spam like that, as spam, so the email client can learn what is good and what should be binned!

[Mama_Zappa]

It couldn’t hurt (aside from the pain-in-the-ass effect) to go through a round of password changes, especially for anything you routinely access on your phone.

Typo Knig’s phone was stolen a few weeks back, and we immediately changed anything he accesses routinely on it, and have been changing all our others as we have time. A vault helps with that (we have 1Password).

[beowulff]

You are worried about getting malware on an iPad?

The risk is as close to zero as you can imagine. iOS is completely sandboxed - third-parties can’t install applications (malware) without going through the App Store.

[Spiderman]

Johnny_L.A:

I just opened SPAM[sup]®[/sup].

It was delicious on a sandwich.

REPORTED!

SPAM[sup]®[/sup] & delicious in the same post??? Hell, SPAM[sup]®[/sup] & *edible *don’t belong together!